Lucene search
K
CiscoPix Firewall

13 matches found

CVE
CVE
added 2004/03/18 5:0 a.m.134 views

CVE-2004-0079

The connected documents confirm CVE-2004-0079: in OpenSSL 0.9.6c–0.9.6k and 0.9.7a–0.9.7c, a crafted SSL/TLS handshake can trigger a null dereference in do_change_cipher_spec, causing a denial of service (crash). Remediation is to apply patched/OpenSSL releases per advisories (e.g., CentOS adviso...

7.5CVSS7.1AI score0.09537EPSS
CVE
CVE
added 2004/03/18 5:0 a.m.121 views

CVE-2004-0081

CVE-2004-0081 affects OpenSSL 0.9.6 prior to 0.9.6d. The issue is that OpenSSL does not properly handle unknown TLS/SSL message types, enabling a remote attacker to trigger a denial of service via an infinite loop (demonstrated with the Codenomicon TLS Test Tool). Impact is a network-based DoS; e...

5CVSS7.2AI score0.07229EPSS
CVE
CVE
added 2004/03/18 5:0 a.m.111 views

CVE-2004-0112

The CVE-2004-0112 issue affects OpenSSL 0.9.7a/b/c: during the SSL/TLS handshake, the Kerberos ciphersuite path fails to validate the Kerberos ticket length, enabling a remote attacker to cause a denial-of-service by triggering an out-of-bounds read. Public sources in connected documents confirm ...

5CVSS7.2AI score0.10424EPSS
CVE
CVE
added 2003/11/06 5:0 a.m.83 views

CVE-2003-0851

CVE-2003-0851 describes a DoS in OpenSSL’s ASN.1 parser caused by large recursion in malformed ASN.1 sequences. Public diagnostics in the connected data tie the issue to OpenSSL 0.9.6k and older, with Red Hat/Fedora advisories noting fixes in later OpenSSL releases (e.g., 0.9.6l or newer). The vu...

5CVSS7.2AI score0.05407EPSS
CVE
CVE
added 2005/12/22 11:0 a.m.71 views

CVE-2005-4499

CVE-2005-4499 affects Cisco PIX and VPN 3000 concentrators via the Downloadable RADIUS ACLs feature. When an ACL is created on CS ACS, the system generates a random internal name that doubles as a hidden username and password, enabling a remote attacker to sniff the cleartext username from a RADI...

7.5CVSS7.4AI score0.01965EPSS
CVE
CVE
added 2006/07/27 10:0 p.m.63 views

CVE-2006-3906

CVE-2006-3906 describes a DoS in the IKEv1 implementation on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls. The root cause is improper handling of large volumes of IKE Phase-1 requests, leading to resource exhaustion and degraded availability. Exploitation is possible without valid credent...

5CVSS6.6AI score0.06748EPSS
CVE
CVE
added 2003/12/17 5:0 a.m.59 views

CVE-2003-1004

Cisco PIX firewall versions 6.2.x through 6.2.3, when configured as a VPN Client, are affected by CVE-2003-1004. A remote attacker can cause a denial of service (dropped IPSec tunnel) by sending an IKE Phase I negotiation request to the firewall’s outside interface. The connected sources consiste...

5CVSS6.7AI score0.01273EPSS
CVE
CVE
added 2005/11/18 9:0 p.m.58 views

CVE-2005-3669

CVE-2005-3669 covers multiple unspecified vulnerabilities in the Internet Key Exchange v1 (IKEv1) implementation in Cisco products that cause a denial of service (device reset) via malformed IKE packets, demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. The Cisco advisory lacks details to m...

5CVSS6.9AI score0.05143EPSS
CVE
CVE
added 2006/05/09 10:0 a.m.57 views

CVE-2006-0515

CVE-2006-0515 affects Cisco PIX/ASA and Websense integration. Affected: Cisco PIX/ASA versions 7.1.x before 7.1(2) and 7.0.x before 7.0(5); PIX 6.3.x before 6.3.5(112); and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7) . Root cause: handling of HTTP requests when the GET method is split across m...

7.5CVSS6.9AI score0.08825EPSS
CVE
CVE
added 2003/12/17 5:0 a.m.54 views

CVE-2003-1003

CVE-2003-1003 affects Cisco PIX firewall versions 5.x and 6.3.1 and earlier. The vulnerability allows remote attackers to cause a denial-of-service crash/reload via an SNMPv3 message when snmp-server is configured. The connected Red Hat/NVD records and Cisco advisory corroborate the DoS impact. T...

7.8CVSS6.7AI score0.01373EPSS
CVE
CVE
added 2005/04/21 4:0 a.m.45 views

CVE-1999-1582

The CVE-1999-1582 entry concerns the Cisco PIX firewall and a behavior of the established command. According to the description, this built-in functionality can allow connections from a single host to arbitrary ports of a target host if an alternative conduit has already been permitted, which may...

7.5CVSS7.5AI score0.01878EPSS
CVE
CVE
added 2000/10/13 4:0 a.m.45 views

CVE-2000-0613

Summary: CVE-2000-0613 affects Cisco Secure PIX Firewall, where the device does not properly identify forged TCP Reset (RST) packets. This can allow a remote attacker to disrupt legitimate connections established through the firewall, effectively impacting availability. Root cause / Details from ...

5CVSS6.7AI score0.09181EPSS
CVE
CVE
added 2002/08/31 4:0 a.m.41 views

CVE-2002-0954

CVE-2002-0954 relates to Cisco PIX Firewall where the encryption algorithms for the enable and passwd commands can be cracked quickly due to a limited number of rounds. The published description indicates that this weakness facilitates brute‑force decryption of stored or transmitted passwords. Th...

7.5CVSS7.1AI score0.00701EPSS