CVSS: 10.0EPSS: 47%CPEs: 27EXPL: 0CVE-2010-3040 – Cisco ICM Setup Manager Agent.exe HandleUpgradeTrace Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2010-3040
07 Nov 2010 — Multiple stack-based buffer overflows in agent.exe in Setup Manager in Cisco Intelligent Contact Manager (ICM) before 7.0 allow remote attackers to execute arbitrary code via a long parameter in a (1) HandleUpgradeAll, (2) AgentUpgrade, (3) HandleQueryNodeInfoReq, or (4) HandleUpgradeTrace TCP packet, aka Bug IDs CSCti45698, CSCti45715, CSCti45726, and CSCti46164. Múltiples desbordamientos de búfer basados en pila en Setup Manager en Cisco Intelligent Contact Manager (ICM) anterior v7.0 permite a atacantes ... • http://secunia.com/advisories/42146 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 86%CPEs: 296EXPL: 2CVE-2005-0356 – TCP TIMESTAMPS - Denial of Service
https://notcve.org/view.php?id=CVE-2005-0356
31 May 2005 — Multiple TCP implementations with Protection Against Wrapped Sequence Numbers (PAWS) with the timestamps option enabled allow remote attackers to cause a denial of service (connection loss) via a spoofed packet with a large timer value, which causes the host to discard later packets because they appear to be too old. • https://www.exploit-db.com/exploits/1008 •