CVSS: 9.8EPSS: 93%CPEs: 91EXPL: 8CVE-2001-0537 – Cisco IOS 11.x/12.x - HTTP Configuration Arbitrary Administrative Access
https://notcve.org/view.php?id=CVE-2001-0537
21 Jul 2001 — HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL. • https://packetstorm.news/files/id/181081 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 4%CPEs: 1EXPL: 1CVE-2001-0288 – Linux Kernel 2.2 - Predictable TCP Initial Sequence Number
https://notcve.org/view.php?id=CVE-2001-0288
03 May 2001 — Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. • https://www.exploit-db.com/exploits/19522 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0368
https://notcve.org/view.php?id=CVE-2000-0368
12 Mar 2001 — Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data. Classic Cisco IOD 9.1 y anteriores permite a atacantes con acceso al inductor de login obtener porciones de la historia de comandos de usuarios anteriores, lo que puede permitir al atacante obtener datos sensibles. • http://www.ciac.org/ciac/bulletins/j-009.shtml • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 7.5EPSS: 0%CPEs: 201EXPL: 0CVE-2001-1434
https://notcve.org/view.php?id=CVE-2001-1434
28 Feb 2001 — Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created. • http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtml •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2000-0700
https://notcve.org/view.php?id=CVE-2000-0700
13 Oct 2000 — Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets. • http://www.cisco.com/warp/public/707/gsraclbypassdos-pub.shtml •
CVSS: 6.5EPSS: 0%CPEs: 54EXPL: 1CVE-2000-0345
https://notcve.org/view.php?id=CVE-2000-0345
03 May 2000 — The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command. • http://www.securityfocus.com/bid/1161 •
CVSS: 7.5EPSS: 85%CPEs: 39EXPL: 2CVE-2000-0380 – Cisco IOS 11.x/12.x - HTTP %%
https://notcve.org/view.php?id=CVE-2000-0380
26 Apr 2000 — The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string. • https://packetstorm.news/files/id/180482 • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 26EXPL: 0CVE-2000-0268
https://notcve.org/view.php?id=CVE-2000-0268
20 Apr 2000 — Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. • http://www.cisco.com/warp/public/707/iostelnetopt-pub.shtml •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1465
https://notcve.org/view.php?id=CVE-1999-1465
31 Dec 1999 — Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862. • http://ciac.llnl.gov/ciac/bulletins/j-016.shtml •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-1999-1464
https://notcve.org/view.php?id=CVE-1999-1464
31 Dec 1999 — Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564. • http://ciac.llnl.gov/ciac/bulletins/j-016.shtml •