Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.
Max CVSS
7.5
EPSS Score
1.03%
Published
2001-02-28
Updated
2017-07-11
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
Max CVSS
5.0
EPSS Score
0.47%
Published
2001-02-28
Updated
2017-07-11
Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read and write information to the MIB using arbitrary community strings.
Max CVSS
6.4
EPSS Score
0.50%
Published
2001-12-30
Updated
2008-09-10
PPTP implementation in Cisco IOS 12.1 and 12.2 allows remote attackers to cause a denial of service (crash) via a malformed packet.
Max CVSS
5.0
EPSS Score
1.46%
Published
2001-07-12
Updated
2017-10-10
RSA BSAFE SSL-J 3.0, 3.0.1 and 3.1, as used in Cisco iCND 2.0, caches session IDs from failed login attempts, which could allow remote attackers to bypass SSL client authentication and gain access to sensitive data by logging in after an initial failure.
Max CVSS
7.5
EPSS Score
0.45%
Published
2001-09-12
Updated
2021-11-08
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2001-10-10
Updated
2017-10-10
Cisco routers and switches running IOS 12.0 through 12.2.1 allows a remote attacker to cause a denial of service via a flood of UDP packets.
Max CVSS
5.0
EPSS Score
3.10%
Published
2001-07-24
Updated
2017-12-19
Cisco IOS 12.2 and earlier running Cisco Discovery Protocol (CDP) allows remote attackers to cause a denial of service (memory consumption) via a flood of CDP neighbor announcements.
Max CVSS
5.0
EPSS Score
2.64%
Published
2001-10-09
Updated
2017-10-10
Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack.
Max CVSS
5.0
EPSS Score
0.13%
Published
2001-08-31
Updated
2017-12-19
Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which causes the router to become unresponsive and stop forwarding packets.
Max CVSS
5.0
EPSS Score
0.78%
Published
2001-08-31
Updated
2017-12-19
Cisco SN 5420 Storage Router 1.1(3) and earlier allows remote attackers to cause a denial of service (reboot) via a series of connections to TCP port 8023.
Max CVSS
5.0
EPSS Score
1.52%
Published
2001-07-11
Updated
2018-10-30
Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged.
Max CVSS
4.6
EPSS Score
0.04%
Published
2001-01-08
Updated
2018-10-30
Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.
Max CVSS
7.5
EPSS Score
0.54%
Published
2001-11-28
Updated
2017-10-10
Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table.
Max CVSS
5.0
EPSS Score
2.27%
Published
2001-11-15
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote attackers to bypass the intended access controls.
Max CVSS
7.5
EPSS Score
0.34%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls.
Max CVSS
7.5
EPSS Score
0.34%
Published
2001-12-06
Updated
2008-09-05
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.
Max CVSS
7.5
EPSS Score
0.47%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
Max CVSS
7.5
EPSS Score
0.39%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragments.
Max CVSS
5.0
EPSS Score
1.52%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL.
Max CVSS
7.5
EPSS Score
0.48%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and earlier allows remote attackers to cause a denial of service (CPU consumption) by flooding the router with traffic that generates a large number of ICMP Unreachable replies.
Max CVSS
5.0
EPSS Score
1.30%
Published
2001-12-06
Updated
2017-10-10
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.
Max CVSS
5.0
EPSS Score
0.54%
Published
2001-10-18
Updated
2017-12-19
Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet.
Max CVSS
7.5
EPSS Score
3.55%
Published
2001-10-18
Updated
2017-10-10
Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of large ICMP ECHO REPLY (ping) packets, which cause it to enter ROMMON mode and stop forwarding packets.
Max CVSS
5.0
EPSS Score
0.25%
Published
2001-10-18
Updated
2017-10-10
Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.
Max CVSS
7.5
EPSS Score
3.43%
Published
2001-10-18
Updated
2017-07-11
55 vulnerabilities found
1 2 3
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!