| CVE |
Vendors |
Products |
Updated |
CVSS v3.1 |
| Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port. |
| Land IP denial of service. |
| Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings. |
| Cisco Cache Engine allows a remote attacker to gain access via a null username and password. |
| The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics. |
| Cisco Cache Engine allows an attacker to replace content in the cache. |
| Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set. |
| Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port. |
| Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list. |
| A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication. |
| ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts. |
| An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP). |
| In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters. |
| Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor module to reload. |
| Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port. |
| The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration. |
| AAA authentication on Cisco systems allows attackers to execute commands without authorization. |
| Buffer overflow in Cisco 7xx routers through the telnet service. |
| Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL. |
| The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering. |
