Lucene search
+L
CiscoPix Firewall 525

10 matches found

CVE
CVE
added 2011/02/25 11:0 a.m.75 views

CVE-2011-0396

CVE-2011-0396 affects Cisco ASA 5500 Series devices with ASA software versions 8.0 before 8.0(5.23), 8.1 before 8.1(2.49), 8.2 before 8.2(4.1), and 8.3 before 8.3(2.13). When a Certificate Authority (CA) is configured, remote attackers could read arbitrary files via unspecified vectors. This vuln...

7.8CVSS7AI score0.01401EPSS
CVE
CVE
added 2005/12/22 11:0 a.m.72 views

CVE-2005-4499

CVE-2005-4499 affects Cisco PIX and VPN 3000 concentrators via the Downloadable RADIUS ACLs feature. When an ACL is created on CS ACS, the system generates a random internal name that doubles as a hidden username and password, enabling a remote attacker to sniff the cleartext username from a RADI...

7.5CVSS7.4AI score0.01965EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.69 views

CVE-2010-2816

CVE-2010-2816 is a Cisco ASA 5500 Series DoS vulnerability in the SIP inspection feature. An unauthenticated, network-scoped attacker can trigger a device reload by sending crafted SIP packets. Affected software versions are ASA 5500 Series with 8.0 before 8.0(5.17), 8.1 before 8.1(2.45), and 8.2...

7.8CVSS6.8AI score0.02496EPSS
CVE
CVE
added 2006/08/17 1:0 a.m.66 views

CVE-2006-4194

CVE-2006-4032 (Cisco IOS CME) and CVE-2006-4194 involve an unspecified vulnerability in Cisco products (CME and PIX 500) where remote attackers can access sensitive information (e.g., SIP user directory usernames) through SIP-related messages or fixups. The description notes the vendor could not ...

5CVSS6.8AI score0.02224EPSS
CVE
CVE
added 2006/07/27 10:0 p.m.65 views

CVE-2006-3906

CVE-2006-3906 describes a DoS in the IKEv1 implementation on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls. The root cause is improper handling of large volumes of IKE Phase-1 requests, leading to resource exhaustion and degraded availability. Exploitation is possible without valid credent...

5CVSS6.6AI score0.06748EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.60 views

CVE-2010-2815

CVE-2010-2815 affects Cisco ASA 5500 Series and PIX 500 series TLS/SSL processing. A DoS can be triggered by a sequence of crafted TLS packets, causing a device reload. Affected software versions and fixed releases are documented in Cisco PSIRT: upgrade to 7.2(5) or later for 7.2.x, 8.0(5.15) or ...

7.8CVSS6.7AI score0.02496EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.58 views

CVE-2010-2817

CVE-2010-2817 concerns an unspecified DoS vulnerability in the IKE implementation of Cisco ASA 5500-series devices (and Cisco PIX 500-series) that can cause a device reload via a crafted IKE message. Connected documents confirm affected software ranges and fixed versions: ASA 7.0 up to 7.0(8.11);...

7.8CVSS6.7AI score0.02496EPSS
CVE
CVE
added 2011/02/25 11:0 a.m.58 views

CVE-2011-0395

Cisco ASA 5500 Series devices are affected by CVE-2011-0395 when RIP is enabled together with the Cisco Phone Proxy feature. The issue allows remote attackers to trigger a denial of service (device reload) via crafted RIP updates. Affected software versions include 8.0 before 8.0(5.20), 8.1 befor...

7.8CVSS6.8AI score0.02577EPSS
CVE
CVE
added 2006/08/23 10:0 p.m.57 views

CVE-2006-4312

Cisco PIX 500 Series Security Appliances and ASA 5500 Series Adaptive Security Appliances are affected when running 7.0(x) up to 7.0(5) and 7.1(x) up to 7.1(2.4), and FWSM 3.1(x) up to 3.1(1.6). The vulnerability causes the EXEC password, local user passwords, and the enable password to be change...

6.8CVSS7.2AI score0.00321EPSS
CVE
CVE
added 2010/08/06 7:31 p.m.57 views

CVE-2010-2814

CVE-2010-2814 affects Cisco ASA 5500 Series (and PIX 500) TLS implementation. A sequence of crafted TLS packets can trigger a denial of service, causing the device to reload (unavailability). Reported as Bug CSCtf37506. Affected software and fixed releases per sources: 7.2.x before 7.2(5) → upgra...

7.8CVSS6.7AI score0.02496EPSS