Optical Networking Systems Software@1.0 Security Vulnerabilities and Issues — Optical Networking Systems Software@1.0 CVE List

Lucene search

CiscoOptical Networking Systems Software1.0

11 matches found

CVE•added 2006/04/07 10:4 a.m.•41 views

CVE-2006-1672

The installation of Cisco Transport Controller (CTC) for Cisco Optical Networking System (ONS) 15000 series nodes adds a Java policy file entry with a wildcard that grants the java.security.AllPermission permission to any http URL containing "fs/LAUNCHER.jar", which allows remote attackers to execu...

7.5CVSS7.7AI score0.03797EPSS

CVE•added 2004/11/23 5:0 a.m.•39 views

CVE-2004-0307

Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), and ONS 15454 SD before 4.1(3) allows remote attackers to cause a denial of service (reset) by not sending the ACK portion of the TCP three-way handshake and sending an invalid response instead.

5CVSS6.9AI score0.00763EPSS

CVE•added 2005/02/13 5:0 a.m.•39 views

CVE-2004-1432

Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3), 4.0(0) to 4.0(2), and earlier versions, allows remote attackers to cause a denial of service (control card reset) via malformed (1) IP or (2) ICMP packets.

5CVSS6.8AI score0.03307EPSS

CVE•added 2006/04/07 10:4 a.m.•38 views

CVE-2006-1671

Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (card reset) via (1) a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc51390; (2) a "crafted" IP packet to a...

5CVSS6.7AI score0.02512EPSS

CVE•added 2005/02/13 5:0 a.m.•37 views

CVE-2004-1433

Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.6(0) and 4.6(1), 4.5(x), 4.1(0) to 4.1(3), 4.0(0) to 4.0(2), and earlier versions, and ONS 15600 1.x(x), allows remote attackers to cause a denial of service (control card reset) via malformed (1) TCP and (2) UDP packet...

5CVSS6.7AI score0.03307EPSS

CVE•added 2005/02/13 5:0 a.m.•36 views

CVE-2004-1435

5CVSS6.6AI score0.01191EPSS

CVE•added 2005/02/13 5:0 a.m.•33 views

CVE-2004-1434

Multiple versions of Cisco ONS 15327, ONS 15454, and ONS 15454 SDH, including 4.1(0) to 4.1(2), 4.5(x), 4.0(0) to 4.0(2), and earlier versions, allows remote attackers to cause a denial of service (control card reset) via malformed SNMP packets.

5CVSS6.7AI score0.02009EPSS

CVE•added 2006/04/07 10:4 a.m.•33 views

CVE-2006-1670

Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.

7.8CVSS6.8AI score0.01919EPSS

CVE•added 2004/11/23 5:0 a.m.•32 views

CVE-2004-0306

Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS 15600 before 1.3(0) enable TFTP service on UDP port 69 by default, which allows remote attackers to GET or PUT ONS system files on the current active TCC in the /flash0 or /flash1 directories.

5CVSS6.9AI score0.00412EPSS

CVE•added 2004/11/24 5:0 a.m.•32 views

CVE-2004-0308

Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.

10CVSS6.9AI score0.00417EPSS

CVE•added 2005/02/13 5:0 a.m.•32 views

CVE-2004-1436

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

7.5CVSS7AI score0.01191EPSS