Ios@12.4 Security Vulnerabilities and Issues — Ios@12.4 CVE List

Lucene search

CiscoIos12.4

10 matches found

CVE•added 2007/10/12 1:17 a.m.•62 views

CVE-2007-5381

Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet session...

9.3CVSS8AI score0.63694EPSS

CVE•added 2007/08/09 9:17 p.m.•53 views

CVE-2007-4286

Buffer overflow in the Next Hop Resolution Protocol (NHRP) functionality in Cisco IOS 12.0 through 12.4 allows remote attackers to cause a denial of service (restart) and execute arbitrary code via a crafted NHRP packet.

9.3CVSS7.8AI score0.6264EPSS

CVE•added 2007/08/20 7:17 p.m.•43 views

CVE-2007-4430

Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions in a "show ip bgp regexp" command. NOTE: unauthenticated remote attacks are possible in environment...

5CVSS6.7AI score0.12805EPSS

CVE•added 2007/02/01 1:28 a.m.•40 views

CVE-2007-0648

Cisco IOS after 12.3(14)T, 12.3(8)YC1, 12.3(8)YG, and 12.4, with voice support and without Session Initiated Protocol (SIP) configured, allows remote attackers to cause a denial of service (crash) by sending a crafted packet to port 5060/UDP.

7.8CVSS6.4AI score0.02244EPSS

CVE•added 2007/08/09 9:17 p.m.•40 views

CVE-2007-4293

Cisco IOS 12.0 through 12.4 allows remote attackers to cause a denial of service (device crash) via (1) "abnormal" MGCP messages, aka CSCsd81407; and (2) a large facsimile packet, aka CSCej20505.

7.1CVSS6.7AI score0.01609EPSS

CVE•added 2007/08/09 9:17 p.m.•39 views

CVE-2007-4291

Cisco IOS 12.0 through 12.4 allows remote attackers to cause a denial of service via (1) a malformed MGCP packet, which causes a device hang, aka CSCsf08998; a malformed H.323 packet, which causes a device crash, as identified by (2) CSCsi60004 with Proxy Unregistration and (3) CSCsg70474; and a ma...

7.1CVSS6.7AI score0.03514EPSS

CVE•added 2007/08/09 9:17 p.m.•39 views

CVE-2007-4295

Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows remote attackers to execute arbitrary code via a malformed SIP packet, aka CSCsi80749.

6.8CVSS7.6AI score0.02463EPSS

CVE•added 2007/02/14 2:28 a.m.•38 views

CVE-2007-0917

The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via fragmented packets.

6.4CVSS6.6AI score0.00632EPSS

CVE•added 2007/02/14 2:28 a.m.•38 views

CVE-2007-0918

The ATOMIC.TCP signature engine in the Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XA, 12.3YA, 12.3T, and other trains allows remote attackers to cause a denial of service (IPS crash and traffic loss) via unspecified manipulations that are not properly handled by the regular express...

7.1CVSS6.6AI score0.02201EPSS

CVE•added 2007/08/09 9:17 p.m.•35 views

CVE-2007-4292

Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1) CSCsf11855, (2) CSCeb21064, (3) CSCse40276, (4) CSCse68355, (5) CSCsf30058, (6) CSCsb24007, and (7) CSCsc60249.

9.3CVSS6.6AI score0.07035EPSS