13 matches found
CVE-2004-0079
The connected documents confirm CVE-2004-0079: in OpenSSL 0.9.6c–0.9.6k and 0.9.7a–0.9.7c, a crafted SSL/TLS handshake can trigger a null dereference in do_change_cipher_spec, causing a denial of service (crash). Remediation is to apply patched/OpenSSL releases per advisories (e.g., CentOS adviso...
CVE-2004-0081
CVE-2004-0081 affects OpenSSL 0.9.6 prior to 0.9.6d. The issue is that OpenSSL does not properly handle unknown TLS/SSL message types, enabling a remote attacker to trigger a denial of service via an infinite loop (demonstrated with the Codenomicon TLS Test Tool). Impact is a network-based DoS; e...
CVE-2004-0112
The CVE-2004-0112 issue affects OpenSSL 0.9.7a/b/c: during the SSL/TLS handshake, the Kerberos ciphersuite path fails to validate the Kerberos ticket length, enabling a remote attacker to cause a denial-of-service by triggering an out-of-bounds read. Public sources in connected documents confirm ...
CVE-2003-0851
CVE-2003-0851 describes a DoS in OpenSSL’s ASN.1 parser caused by large recursion in malformed ASN.1 sequences. Public diagnostics in the connected data tie the issue to OpenSSL 0.9.6k and older, with Red Hat/Fedora advisories noting fixes in later OpenSSL releases (e.g., 0.9.6l or newer). The vu...
CVE-2005-4499
CVE-2005-4499 affects Cisco PIX and VPN 3000 concentrators via the Downloadable RADIUS ACLs feature. When an ACL is created on CS ACS, the system generates a random internal name that doubles as a hidden username and password, enabling a remote attacker to sniff the cleartext username from a RADI...
CVE-2006-3906
CVE-2006-3906 describes a DoS in the IKEv1 implementation on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls. The root cause is improper handling of large volumes of IKE Phase-1 requests, leading to resource exhaustion and degraded availability. Exploitation is possible without valid credent...
CVE-2003-1004
Cisco PIX firewall versions 6.2.x through 6.2.3, when configured as a VPN Client, are affected by CVE-2003-1004. A remote attacker can cause a denial of service (dropped IPSec tunnel) by sending an IKE Phase I negotiation request to the firewall’s outside interface. The connected sources consiste...
CVE-2005-3669
CVE-2005-3669 covers multiple unspecified vulnerabilities in the Internet Key Exchange v1 (IKEv1) implementation in Cisco products that cause a denial of service (device reset) via malformed IKE packets, demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. The Cisco advisory lacks details to m...
CVE-2006-0515
CVE-2006-0515 affects Cisco PIX/ASA and Websense integration. Affected: Cisco PIX/ASA versions 7.1.x before 7.1(2) and 7.0.x before 7.0(5); PIX 6.3.x before 6.3.5(112); and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7) . Root cause: handling of HTTP requests when the GET method is split across m...
CVE-2003-1003
CVE-2003-1003 affects Cisco PIX firewall versions 5.x and 6.3.1 and earlier. The vulnerability allows remote attackers to cause a denial-of-service crash/reload via an SNMPv3 message when snmp-server is configured. The connected Red Hat/NVD records and Cisco advisory corroborate the DoS impact. T...
CVE-1999-1582
The CVE-1999-1582 entry concerns the Cisco PIX firewall and a behavior of the established command. According to the description, this built-in functionality can allow connections from a single host to arbitrary ports of a target host if an alternative conduit has already been permitted, which may...
CVE-2000-0613
Summary: CVE-2000-0613 affects Cisco Secure PIX Firewall, where the device does not properly identify forged TCP Reset (RST) packets. This can allow a remote attacker to disrupt legitimate connections established through the firewall, effectively impacting availability. Root cause / Details from ...
CVE-2002-0954
CVE-2002-0954 relates to Cisco PIX Firewall where the encryption algorithms for the enable and passwd commands can be cracked quickly due to a limited number of rounds. The published description indicates that this weakness facilitates brute‑force decryption of stored or transmitted passwords. Th...