Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.
Max CVSS
7.5
EPSS Score
1.50%
Published
1997-10-01
Updated
2008-09-09
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
Max CVSS
7.5
EPSS Score
0.62%
Published
1995-07-31
Updated
2008-09-09
AAA authentication on Cisco systems allows attackers to execute commands without authorization.
Max CVSS
7.5
EPSS Score
0.28%
Published
1998-01-01
Updated
2024-02-07
Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.
Max CVSS
7.5
EPSS Score
0.63%
Published
1999-09-01
Updated
2017-12-19
Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.
Max CVSS
7.5
EPSS Score
0.62%
Published
1999-12-31
Updated
2017-10-10
Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.
Max CVSS
7.5
EPSS Score
0.57%
Published
1992-12-10
Updated
2008-09-05
Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.
Max CVSS
7.5
EPSS Score
0.35%
Published
1999-12-31
Updated
2017-12-19
Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.
Max CVSS
7.5
EPSS Score
0.27%
Published
1999-12-31
Updated
2017-12-19
Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.
Max CVSS
7.5
EPSS Score
0.21%
Published
1992-12-10
Updated
2008-09-05

CVE-2000-0380

Public exploit
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
Max CVSS
7.1
EPSS Score
95.97%
Published
2000-04-26
Updated
2008-09-10
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Max CVSS
7.5
EPSS Score
0.24%
Published
2001-05-03
Updated
2008-09-05
Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.
Max CVSS
7.5
EPSS Score
0.54%
Published
2001-11-28
Updated
2017-10-10
Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service (reset) or modify configuration via a long filename.
Max CVSS
7.1
EPSS Score
2.99%
Published
2002-08-12
Updated
2016-10-18
Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144).
Max CVSS
7.1
EPSS Score
0.92%
Published
2002-10-04
Updated
2018-10-30
Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal Broadband Routers allows remote attackers to modify Data Over Cable Service Interface Specification (DOCSIS) settings via a DOCSIS file without a Message Integrity Check (MIC) signature, which is approved by the router.
Max CVSS
7.5
EPSS Score
2.14%
Published
2002-12-31
Updated
2024-02-08
Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.
Max CVSS
7.8
EPSS Score
11.83%
Published
2002-12-31
Updated
2018-10-19
The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed packet.
Max CVSS
7.8
EPSS Score
0.67%
Published
2002-12-31
Updated
2017-07-29
Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router.
Max CVSS
7.8
EPSS Score
7.82%
Published
2002-12-31
Updated
2008-09-05
Buffer overflow in Cisco IOS 11.2.x to 12.0.x allows remote attackers to cause a denial of service and possibly execute commands via a large number of OSPF neighbor announcements.
Max CVSS
7.5
EPSS Score
1.86%
Published
2003-03-03
Updated
2016-10-18
Cisco IOS 11.x and 12.0 through 12.2 allows remote attackers to cause a denial of service (traffic block) by sending a particular sequence of IPv4 packets to an interface on the device, causing the input queue on that interface to be marked as full.
Max CVSS
7.8
EPSS Score
79.90%
Published
2003-08-18
Updated
2018-10-30
Buffer overflow in the HTTP server for Cisco IOS 12.2 and earlier allows remote attackers to execute arbitrary code via an extremely long (2GB) HTTP GET request.
Max CVSS
7.5
EPSS Score
2.35%
Published
2003-08-27
Updated
2008-09-10
The Session Initiation Protocol (SIP) implementation in multiple Cisco products including IP Phone models 7940 and 7960, IOS versions in the 12.2 train, and Secure PIX 5.2.9 to 6.2.2 allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite.
Max CVSS
7.5
EPSS Score
4.40%
Published
2003-12-31
Updated
2018-10-30
Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
Max CVSS
7.5
EPSS Score
5.55%
Published
2004-02-17
Updated
2017-10-11
The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.
Max CVSS
7.5
EPSS Score
0.57%
Published
2004-11-23
Updated
2023-12-28
Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.
Max CVSS
7.5
EPSS Score
1.03%
Published
2001-02-28
Updated
2017-07-11
280 vulnerabilities found
1 2 3 4 5 6 7 8 9 10 11 12
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!