Vulnerabilities (CVE)

Filtered by vendor Cisco Subscribe
Total 6072 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2000-0267 1 Cisco 1 Catos 2008-09-10 4.6 MEDIUM N/A
Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password.
CVE-2000-0380 1 Cisco 1 Ios 2008-09-10 7.1 HIGH N/A
The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.
CVE-1999-0889 1 Cisco 1 675 Router 2008-09-09 7.5 HIGH N/A
Cisco 675 routers running CBOS allow remote attackers to establish telnet sessions if an exec or superuser password has not been set.
CVE-1999-0445 1 Cisco 1 Ios 2008-09-09 5.0 MEDIUM N/A
In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.
CVE-1999-0430 1 Cisco 3 Catalyst 12xx Supervisor Software, Catalyst 29xx Supervisor Software, Catalyst 5xxx Supervisor Software 2008-09-09 5.0 MEDIUM N/A
Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor module to reload.
CVE-1999-0416 1 Cisco 1 Cisco 7xx Routers 2008-09-09 5.0 MEDIUM N/A
Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port.
CVE-1999-0415 1 Cisco 1 Cisco 7xx Routers 2008-09-09 7.5 HIGH N/A
The HTTP server in Cisco 7xx series routers 3.2 through 4.2 is enabled by default, which allows remote attackers to change the router's configuration.
CVE-1999-0230 1 Cisco 1 Ios 2008-09-09 5.0 MEDIUM N/A
Buffer overflow in Cisco 7xx routers through the telnet service.
CVE-1999-0161 1 Cisco 1 Ios 2008-09-09 7.5 HIGH N/A
In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.
CVE-1999-0160 1 Cisco 1 Ios 2008-09-09 7.5 HIGH N/A
Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.
CVE-1999-0016 6 Cisco, Gnu, Hp and 3 more 8 Ios, Inet, Hp-ux and 5 more 2008-09-09 5.0 MEDIUM N/A
Land IP denial of service.
CVE-2008-1113 2 Cisco, Vocera Communications 2 7921 Wireless Ip Phone, Vocera Communications Badge 2008-09-05 7.8 HIGH N/A
Cisco Unified Wireless IP Phone 7921, when using Protected Extensible Authentication Protocol (PEAP), does not validate server certificates, which allows remote wireless access points to steal hashed passwords and conduct man-in-the-middle (MITM) attacks.
CVE-2007-5552 1 Cisco 1 Ios 2008-09-05 9.3 HIGH N/A
Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
CVE-2007-5551 1 Cisco 1 Ios 2008-09-05 7.1 HIGH N/A
Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
CVE-2007-5550 1 Cisco 1 Ios 2008-09-05 5.0 MEDIUM N/A
Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via unspecified vectors involving a "common network service", aka PSIRT-1255024833. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
CVE-2006-5394 1 Cisco 1 Secure Desktop 2008-09-05 2.1 LOW N/A
The default configuration of Cisco Secure Desktop (CSD) has an unchecked "Disable printing" box in Secure Desktop Settings, which might allow local users to read data that was sent to a printer during another user's SSL VPN session.
CVE-2006-5393 1 Cisco 1 Secure Desktop 2008-09-05 2.1 LOW N/A
Cisco Secure Desktop (CSD) does not require that the ClearPageFileAtShutdown (aka CCE-Winv2.0-407) registry value equals 1, which might allow local users to read certain memory pages that were written during another user's SSL VPN session.
CVE-2006-4352 1 Cisco 1 Content Services Switch 11000 2008-09-05 5.0 MEDIUM N/A
The ArrowPoint cookie functionality for Cisco 11000 series Content Service Switches specifies an internal IP address if the administrator does not specify a string option, which allows remote attackers to obtain sensitive information.
CVE-2005-3426 1 Cisco 1 Content Services Switch 11500 2008-09-05 5.0 MEDIUM N/A
Cisco CSS 11500 Content Services Switch (CSS) with SSL termination services allows remote attackers to cause a denial of service (memory corruption and device reload) via a malformed client certificate during SSL session negotiation.
CVE-2005-2243 1 Cisco 1 Call Manager 2008-09-05 5.0 MEDIUM N/A
Memory leak in inetinfo.exe in Cisco CallManager (CCM) 3.2 and earlier, 3.3 before 3.3(5), 4.0 before 4.0(2a)SR2b, and 4.1 4.1 before 4.1(3)SR1, when Multi Level Admin (MLA) is enabled, allows remote attackers to cause a denial of service (memory consumption) via a large number of Admin Service Tool (AST) logins that fail.