Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.
Max CVSS
7.5
EPSS Score
1.50%
Published
1997-10-01
Updated
2008-09-09
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
Max CVSS
7.5
EPSS Score
0.62%
Published
1995-07-31
Updated
2008-09-09
AAA authentication on Cisco systems allows attackers to execute commands without authorization.
Max CVSS
7.5
EPSS Score
0.28%
Published
1998-01-01
Updated
2024-02-07
The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration.
Max CVSS
7.5
EPSS Score
0.68%
Published
1999-03-11
Updated
2008-09-09
A default configuration of CiscoSecure Access Control Server (ACS) allows remote users to modify the server database without authentication.
Max CVSS
7.5
EPSS Score
0.47%
Published
1999-08-19
Updated
2019-10-09
Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set.
Max CVSS
7.5
EPSS Score
0.56%
Published
1999-07-01
Updated
2008-09-09
Cisco PIX Private Link 4.1.6 and earlier does not properly process certain commands in the configuration file, which reduces the effective key length of the DES key to 48 bits instead of 56 bits, which makes it easier for an attacker to find the proper key via a brute force attack.
Max CVSS
7.5
EPSS Score
0.70%
Published
1999-12-31
Updated
2017-10-10
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
Max CVSS
7.5
EPSS Score
0.63%
Published
1999-09-01
Updated
2017-12-19
Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.
Max CVSS
7.5
EPSS Score
0.62%
Published
1999-12-31
Updated
2017-10-10
Cisco routers 9.17 and earlier allow remote attackers to bypass security restrictions via certain IP source routed packets that should normally be denied using the "no ip source-route" command.
Max CVSS
7.5
EPSS Score
0.50%
Published
1993-04-22
Updated
2017-12-19
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.
Max CVSS
7.5
EPSS Score
0.57%
Published
1992-12-10
Updated
2008-09-05
Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.
Max CVSS
7.5
EPSS Score
0.35%
Published
1999-12-31
Updated
2017-12-19
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.
Max CVSS
7.5
EPSS Score
0.27%
Published
1999-12-31
Updated
2017-12-19
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
Max CVSS
7.5
EPSS Score
0.21%
Published
1992-12-10
Updated
2008-09-05
By design, the "established" command on the Cisco PIX firewall allows connections from one host to arbitrary ports of a target host if an alternative conduit has already been allowed, which can cause administrators to configure less restrictive access controls than intended if they do not understand this functionality.
Max CVSS
7.5
EPSS Score
0.27%
Published
1998-07-15
Updated
2017-07-11
Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt.
Max CVSS
7.5
EPSS Score
0.57%
Published
2000-02-12
Updated
2018-10-30

CVE-2000-0380

Public exploit
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
Max CVSS
7.1
EPSS Score
95.97%
Published
2000-04-26
Updated
2008-09-10
Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges.
Max CVSS
7.5
EPSS Score
0.77%
Published
2000-12-19
Updated
2017-12-19
The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands.
Max CVSS
7.5
EPSS Score
4.00%
Published
2000-12-11
Updated
2018-10-30
CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords.
Max CVSS
7.5
EPSS Score
0.51%
Published
2000-12-11
Updated
2017-10-10
Memory leak in Cisco Catalyst 4000, 5000, and 6000 series switches allows remote attackers to cause a denial of service via a series of failed telnet authentication attempts.
Max CVSS
7.8
EPSS Score
0.76%
Published
2001-02-16
Updated
2017-10-10
The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection.
Max CVSS
7.5
EPSS Score
0.45%
Published
2001-02-16
Updated
2017-10-10
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Max CVSS
7.5
EPSS Score
0.24%
Published
2001-05-03
Updated
2008-09-05
Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-06-18
Updated
2017-10-10
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.
Max CVSS
7.1
EPSS Score
0.65%
Published
2001-06-18
Updated
2017-10-10
1713 vulnerabilities found
1 2 3 4 5 6 ...... 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!