Lucene search

K

108 matches found

cve
cve
added 2011/10/22 2:59 a.m.51 views

CVE-2011-2059

The ipv6 component in Cisco IOS before 15.1(4)M1.3 allows remote attackers to conduct fingerprinting attacks and obtain potentially sensitive information about the presence of the IOS operating system via an ICMPv6 Echo Request packet containing a Hop-by-Hop (HBH) extension header (EH) with a 0x0c0...

5CVSS6.5AI score0.00221EPSS
cve
cve
added 2000/10/13 4:0 a.m.50 views

CVE-2000-0486

Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field.

5CVSS7.2AI score0.00832EPSS
cve
cve
added 2007/10/18 8:17 p.m.49 views

CVE-2007-5547

Cross-site scripting (XSS) vulnerability in Cisco IOS allows remote attackers to inject arbitrary web script or HTML, and execute IOS commands, via unspecified vectors, aka PSIRT-2022590358. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, s...

4.3CVSS6.1AI score0.00225EPSS
cve
cve
added 2011/10/03 11:55 p.m.49 views

CVE-2011-3279

The provider-edge MPLS NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload) via a malformed SIP packet to UDP port 5060, aka Bug ID CSCti98219.

7.8CVSS7.3AI score0.00602EPSS
cve
cve
added 2014/04/23 11:52 a.m.49 views

CVE-2012-5427

Cisco IOS Unified Border Element (CUBE) in Cisco IOS before 15.3(2)T allows remote authenticated users to cause a denial of service (input queue wedge) via a crafted series of RTCP packets, aka Bug ID CSCuc42518.

4CVSS6.3AI score0.00403EPSS
cve
cve
added 2007/10/18 8:17 p.m.48 views

CVE-2007-5551

Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it ...

7.1CVSS7.9AI score0.01852EPSS
cve
cve
added 2014/10/25 10:55 a.m.48 views

CVE-2014-3409

The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (device reload) via malformed CFM packets, aka Bug ID CSCuq93406.

6.1CVSS6.8AI score0.01488EPSS
cve
cve
added 2007/01/11 11:28 a.m.47 views

CVE-2007-0199

The Data-link Switching (DLSw) feature in Cisco IOS 11.0 through 12.4 allows remote attackers to cause a denial of service (device reload) via "an invalid value in a DLSw message... during the capabilities exchange."

5CVSS6.3AI score0.01365EPSS
cve
cve
added 2011/01/07 12:0 p.m.47 views

CVE-2010-4671

The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS before 15.0(1)XA5 allows remote attackers to cause a denial of service (CPU consumption and device hang) by sending many Router Advertisement (RA) messages with different source addresses, as demonstrated by the floo...

7.8CVSS6.7AI score0.0211EPSS
cve
cve
added 2002/03/09 5:0 a.m.46 views

CVE-2001-0650

Cisco devices IOS 12.0 and earlier allow a remote attacker to cause a crash, or bad route updates, via malformed BGP updates with unrecognized transitive attribute.

5CVSS6.8AI score0.0131EPSS
cve
cve
added 2011/01/07 7:0 p.m.46 views

CVE-2010-4684

Cisco IOS before 15.0(1)XA1, when certain TFTP debugging is enabled, allows remote attackers to cause a denial of service (device crash) via a TFTP copy over IPv6, aka Bug ID CSCtb28877.

7.1CVSS6.8AI score0.00679EPSS
cve
cve
added 2014/04/23 11:52 a.m.46 views

CVE-2012-5017

Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of service (device reload) by establishing a VPN session and then sending malformed IKEv2 packets, aka Bug ID CSCub39268.

6.8CVSS6.5AI score0.00363EPSS
cve
cve
added 2004/08/06 4:0 a.m.45 views

CVE-2004-0589

Cisco IOS 11.1(x) through 11.3(x) and 12.0(x) through 12.2(x), when configured for BGP routing, allows remote attackers to cause a denial of service (device reload) via malformed BGP (1) OPEN or (2) UPDATE messages.

4.3CVSS6.7AI score0.0235EPSS
cve
cve
added 2016/09/22 5:59 p.m.45 views

CVE-2014-2146

The Zone-Based Firewall (ZBFW) functionality in Cisco IOS, possibly 15.4 and earlier, and IOS XE, possibly 3.13 and earlier, mishandles zone checking for existing sessions, which allows remote attackers to bypass intended resource-access restrictions via spoofed traffic that matches one of these se...

6.5CVSS6.6AI score0.00226EPSS
cve
cve
added 2014/05/16 11:12 a.m.45 views

CVE-2014-3262

The Locator/ID Separation Protocol (LISP) implementation in Cisco IOS 15.3(3)S and earlier and IOS XE does not properly validate parameters in ITR control messages, which allows remote attackers to cause a denial of service (CEF outage and packet drops) via malformed messages, aka Bug ID CSCun73782...

4.3CVSS6.7AI score0.00643EPSS
cve
cve
added 2016/09/18 10:59 p.m.45 views

CVE-2016-6403

The Data in Motion (DMo) application in Cisco IOS 15.6(1)T and IOS XE, when the IOx feature set is enabled, allows remote attackers to cause a denial of service via a crafted packet, aka Bug IDs CSCuy82904, CSCuy82909, and CSCuy82912.

5.9CVSS5.6AI score0.00563EPSS
cve
cve
added 2017/09/25 5:29 p.m.44 views

CVE-2010-3049

Cisco IOS before 12.2(33)SXI allows local users to cause a denial of service (device reboot).

5.5CVSS5.3AI score0.00058EPSS
cve
cve
added 2015/02/12 1:59 a.m.44 views

CVE-2015-0592

The Zone-Based Firewall implementation in Cisco IOS 15.4(2)T3 and earlier allows remote attackers to cause a denial of service (device reload) via crafted network traffic that triggers incorrect kernel-timer handling, aka Bug ID CSCuh25672.

7.8CVSS6.8AI score0.00773EPSS
cve
cve
added 2001/09/12 4:0 a.m.43 views

CVE-1999-1465

Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug...

7.5CVSS6.7AI score0.00351EPSS
cve
cve
added 2011/10/03 11:55 p.m.43 views

CVE-2011-0946

The NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload or hang) via malformed NetMeeting Directory (aka Internet Locator Service or ILS) LDAP traffic, aka Bug ID CSCtd10712.

7.8CVSS7.4AI score0.00371EPSS
cve
cve
added 2020/02/12 5:15 p.m.43 views

CVE-2011-4661

A memory leak vulnerability exists in Cisco IOS before 15.2(1)T due to a memory leak in the HTTP PROXY Server process (aka CSCtu52820), when configured with Cisco ISR Web Security with Cisco ScanSafe and User Authenticaiton NTLM configured.

7.5CVSS7.3AI score0.00389EPSS
cve
cve
added 2007/10/18 8:17 p.m.42 views

CVE-2007-5549

Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. NOTE: as of 20071016, the only disclosure is a vague pre-advi...

2.1CVSS6.1AI score0.00065EPSS
cve
cve
added 2007/10/18 8:17 p.m.42 views

CVE-2007-5552

Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tra...

9.3CVSS8AI score0.01604EPSS
cve
cve
added 2008/03/27 5:44 p.m.42 views

CVE-2008-1151

Memory leak in the virtual private dial-up network (VPDN) component in Cisco IOS before 12.3 allows remote attackers to cause a denial of service (memory consumption) via a series of PPTP sessions, related to "dead memory" that remains allocated after process termination, aka bug ID CSCsj58566.

7.1CVSS6.4AI score0.01009EPSS
cve
cve
added 2014/04/23 11:52 a.m.42 views

CVE-2012-5014

Cisco IOS before 15.1(2)SY allows remote authenticated users to cause a denial of service (device crash) by establishing an SSH session from a client and then placing this client into a (1) slow or (2) idle state, aka Bug ID CSCto87436.

6.3CVSS6.5AI score0.0034EPSS
cve
cve
added 2014/04/23 11:52 a.m.41 views

CVE-2012-4658

The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote attackers to cause a denial of service (webauth and HTTP service outage) via vectors that trigger incorrectly terminated HTTP sessions, aka Bug ID CSCtz99447.

5CVSS6.8AI score0.00402EPSS
cve
cve
added 2017/08/02 7:29 p.m.41 views

CVE-2012-5030

Cisco IOS before 15.2(4)S6 does not initialize an unspecified variable, which might allow remote authenticated users to cause a denial of service (CPU consumption, watchdog timeout, crash) by walking specific SNMP objects.

6.8CVSS6.2AI score0.00454EPSS
cve
cve
added 2001/09/12 4:0 a.m.40 views

CVE-1999-1306

Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.

7.5CVSS7.4AI score0.00179EPSS
cve
cve
added 2007/10/18 8:17 p.m.40 views

CVE-2007-5550

Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via unspecified vectors involving a "common network service", aka PSIRT-1255024833. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a ...

5CVSS6.5AI score0.0025EPSS
cve
cve
added 2007/05/10 12:19 a.m.39 views

CVE-2007-2587

The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote authenticated users to cause a denial of service (IOS reload) via unspecified vectors involving transferring files (aka bug ID CSCse29244).

6.3CVSS6.2AI score0.01093EPSS
cve
cve
added 2011/10/22 2:59 a.m.39 views

CVE-2011-2058

The cat6000-dot1x component in Cisco IOS 12.2 before 12.2(33)SXI7 does not properly handle an external loop between a pair of dot1x enabled ports, which allows remote attackers to cause a denial of service (traffic storm) via unspecified vectors that trigger many unicast EAPoL Protocol Data Units (...

7.8CVSS7.2AI score0.00527EPSS
cve
cve
added 2014/04/23 11:52 a.m.39 views

CVE-2012-5422

Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices allows remote authenticated users to cause a denial of service (spurious errors) via unknown vectors, aka Bug ID CSCub61009.

6.8CVSS6.5AI score0.00363EPSS
cve
cve
added 2013/11/22 1:55 a.m.39 views

CVE-2013-6693

The MLDP implementation in Cisco IOS 15.3(3)S and earlier on 7600 routers, when many VRFs are configured, allows remote attackers to cause a denial of service (chunk corruption and device reload) by establishing many multicast flows, aka Bug ID CSCue22345.

5.4CVSS7AI score0.00371EPSS
cve
cve
added 2011/01/07 7:0 p.m.38 views

CVE-2010-4687

STCAPP (aka the SCCP telephony control application) on Cisco IOS before 15.0(1)XA1 does not properly handle multiple calls to a shared line, which allows remote attackers to cause a denial of service (port hang) by simultaneously ending two calls that were controlled by CallManager Express (CME), a...

5CVSS6.9AI score0.00756EPSS
cve
cve
added 2014/04/23 11:52 a.m.38 views

CVE-2012-3918

Cisco IOS before 15.3(1)T on Cisco 2900 devices, when a VWIC2-2MFT-T1/E1 card is configured for TDM/HDLC mode, allows remote attackers to cause a denial of service (serial-interface outage) via certain Frame Relay traffic, aka Bug ID CSCub13317.

4.3CVSS6.9AI score0.00443EPSS
cve
cve
added 2014/04/04 3:10 p.m.38 views

CVE-2014-2143

The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun31021.

5CVSS6.7AI score0.00412EPSS
cve
cve
added 2002/03/09 5:0 a.m.37 views

CVE-1999-1175

Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.

7.5CVSS6.9AI score0.00871EPSS
cve
cve
added 2001/05/07 4:0 a.m.37 views

CVE-2000-0368

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

2.1CVSS6.8AI score0.00102EPSS
cve
cve
added 2011/01/07 7:0 p.m.37 views

CVE-2009-5040

CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote authenticated users to cause a denial of service (device crash) by using an extension mobility (EM) phone to interact with the menu for SNR number changes, aka Bug ID CSCta63555.

6.8CVSS6.5AI score0.00512EPSS
cve
cve
added 2011/01/07 7:0 p.m.37 views

CVE-2010-4683

Memory leak in Cisco IOS before 15.0(1)XA5 might allow remote attackers to cause a denial of service (memory consumption) by sending a crafted SIP REGISTER message over UDP, aka Bug ID CSCtg41733.

7.8CVSS6.8AI score0.00851EPSS
cve
cve
added 2014/03/21 1:4 a.m.37 views

CVE-2014-2124

Cisco IOS 15.1(2)SY3 and earlier, when used with Supervisor Engine 2T (aka Sup2T) on Catalyst 6500 devices, allows remote attackers to cause a denial of service (device crash) via crafted multicast packets, aka Bug ID CSCuf60783.

7.1CVSS6.8AI score0.02138EPSS
cve
cve
added 2015/02/12 1:59 a.m.37 views

CVE-2015-0610

Race condition in the object-group ACL feature in Cisco IOS 15.5(2)T and earlier allows remote attackers to bypass intended access restrictions via crafted network traffic that triggers improper handling of the timing of process switching and Cisco Express Forwarding (CEF) switching, aka Bug ID CSC...

4.3CVSS6.9AI score0.00247EPSS
cve
cve
added 2008/03/27 5:44 p.m.36 views

CVE-2008-1150

The virtual private dial-up network (VPDN) component in Cisco IOS before 12.3 allows remote attackers to cause a denial of service (resource exhaustion) via a series of PPTP sessions, related to the persistence of interface descriptor block (IDB) data structures after process termination, aka bug I...

7.1CVSS6.4AI score0.01009EPSS
cve
cve
added 2011/01/07 7:0 p.m.36 views

CVE-2009-5038

Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period after an initial reload, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a certain IRC server, related to a "corrupted magic value," aka Bug ID CSC...

7.8CVSS6.9AI score0.00851EPSS
cve
cve
added 2014/04/23 11:52 a.m.36 views

CVE-2012-4651

Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote attackers to cause a denial of service (latency) via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Tower, aka Bug ID CSCub85451.

4.3CVSS6.8AI score0.00443EPSS
cve
cve
added 2014/04/23 11:52 a.m.36 views

CVE-2012-5044

Cisco IOS before 15.3(1)T, when media flow-around is not used, allows remote attackers to cause a denial of service (media loops and stack memory corruption) via VoIP traffic, aka Bug ID CSCub45809.

5.4CVSS6.9AI score0.00427EPSS
cve
cve
added 2013/11/13 3:55 p.m.36 views

CVE-2013-5552

Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG) devices does not properly implement the "parse error drop" feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143.

6.4CVSS6.9AI score0.00155EPSS
cve
cve
added 2017/09/25 5:29 p.m.35 views

CVE-2010-3050

Cisco IOS before 12.2(33)SXI allows remote authenticated users to cause a denial of service (device reboot).

6.8CVSS6.1AI score0.00487EPSS
cve
cve
added 2014/04/24 10:55 a.m.35 views

CVE-2012-3946

Cisco IOS before 15.3(2)S allows remote attackers to bypass interface ACL restrictions in opportunistic circumstances by sending IPv6 packets in an unspecified scenario in which expected packet drops do not occur for "a small percentage" of the packets, aka Bug ID CSCty73682.

5CVSS7AI score0.00213EPSS
cve
cve
added 2014/04/23 11:52 a.m.35 views

CVE-2012-5032

The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the discarding of this traffic, by arranging for an ...

6.4CVSS7AI score0.00506EPSS
Total number of security vulnerabilities108