3 results (0.008 seconds)

CVSS: 5.0EPSS: 2%CPEs: 21EXPL: 1

Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory. • https://www.exploit-db.com/exploits/21472 http://www.cisco.com/warp/public/707/CBOS-DoS.shtml http://www.iss.net/security_center/static/9151.php http://www.iss.net/security_center/static/9153.php http://www.securityfocus.com/bid/4813 http://www.securityfocus.com/bid/4814 http://www.securityfocus.com/bid/4815 https://exchange.xforce.ibmcloud.com/vulnerabilities/9152 •

CVSS: 5.0EPSS: 0%CPEs: 2EXPL: 0

Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack. • http://www.cisco.com/warp/public/707/cisco-cbos-webserver-pub.shtml https://exchange.xforce.ibmcloud.com/vulnerabilities/7027 •

CVSS: 5.0EPSS: 0%CPEs: 15EXPL: 2

Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which causes the router to become unresponsive and stop forwarding packets. • https://www.exploit-db.com/exploits/21092 http://www.cisco.com/warp/public/707/cisco-cbos-webserver-pub.shtml http://www.securityfocus.com/bid/3236 https://exchange.xforce.ibmcloud.com/vulnerabilities/7025 https://exchange.xforce.ibmcloud.com/vulnerabilities/7026 •