CVSS: 6.1EPSS: 1%CPEs: 225EXPL: 2CVE-2005-3921
https://notcve.org/view.php?id=CVE-2005-3921
30 Nov 2005 — Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote attackers to inject arbitrary web script or HTML by (1) packets containing HTML that an administrator views via an HTTP interface to the contents of memory buffers, as demonstrated by the URI /level/15/exec/-/buffers/assigned/dump; or (2) sending the router Cisco Discovery Protocol (CDP) packets with HTML payload that an administrator views via the CDP status pages. NOTE: these vectors were originally reported as... • http://secunia.com/advisories/17780 •
CVSS: 9.8EPSS: 5%CPEs: 228EXPL: 0CVE-2005-3481
https://notcve.org/view.php?id=CVE-2005-3481
03 Nov 2005 — Cisco IOS 12.0 to 12.4 might allow remote attackers to execute arbitrary code via a heap-based buffer overflow in system timers. NOTE: this issue does not correspond to a specific vulnerability, rather a general weakness that only increases the feasibility of exploitation of any vulnerabilities that might exist. Such design-level weaknesses normally are not included in CVE, so perhaps this issue should be REJECTed. • http://secunia.com/advisories/17413 •
CVSS: 9.8EPSS: 3%CPEs: 148EXPL: 0CVE-2005-2451
https://notcve.org/view.php?id=CVE-2005-2451
03 Aug 2005 — Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet. Cisco IOS 12.0 hasta 12.4 y IOS XR anterior a 3.2 con IPv6 habilitado, permite que atacantes remotos en un segmento de red local provoquen una denegación de servicio (recarga del dispositivo) y posiblmemente ejecuten código arbitrario mediante un paquete IPv6 amañado. • http://archives.neohapsis.com/archives/fulldisclosure/2005-07/0663.html •
CVSS: 7.5EPSS: 1%CPEs: 337EXPL: 0CVE-2005-1020
https://notcve.org/view.php?id=CVE-2005-1020
09 Apr 2005 — Secure Shell (SSH) 2 in Cisco IOS 12.0 through 12.3 allows remote attackers to cause a denial of service (device reload) (1) via a username that contains a domain name when using a TACACS+ server to authenticate, (2) when a new SSH session is in the login phase and a currently logged in user issues a send command, or (3) when IOS is logging messages and an SSH session is terminated while the server is sending data. • http://secunia.com/advisories/14854 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 1%CPEs: 93EXPL: 0CVE-2005-1021
https://notcve.org/view.php?id=CVE-2005-1021
09 Apr 2005 — Memory leak in Secure Shell (SSH) in Cisco IOS 12.0 through 12.3, when authenticating against a TACACS+ server, allows remote attackers to cause a denial of service (memory consumption) via an incorrect username or password. • http://secunia.com/advisories/14854 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 3%CPEs: 196EXPL: 0CVE-2005-0196
https://notcve.org/view.php?id=CVE-2005-0196
06 Feb 2005 — Cisco IOS 12.0 through 12.3YL, with BGP enabled and running the bgp log-neighbor-changes command, allows remote attackers to cause a denial of service (device reload) via a malformed BGP packet. • http://secunia.com/advisories/14034 •
CVSS: 7.5EPSS: 2%CPEs: 76EXPL: 0CVE-2005-0195
https://notcve.org/view.php?id=CVE-2005-0195
06 Feb 2005 — Cisco IOS 12.0S through 12.3YH allows remote attackers to cause a denial of service (device restart) via a crafted IPv6 packet. • http://www.cisco.com/warp/public/707/cisco-sa-20050126-ipv6.shtml •
CVSS: 7.5EPSS: 2%CPEs: 77EXPL: 0CVE-2004-1454
https://notcve.org/view.php?id=CVE-2004-1454
31 Dec 2004 — Cisco IOS 12.0S, 12.2, and 12.3, with Open Shortest Path First (OSPF) enabled, allows remote attackers to cause a denial of service (device reload) via a malformed OSPF packet. • http://secunia.com/advisories/12322 •
CVSS: 5.9EPSS: 1%CPEs: 1EXPL: 0CVE-2004-1464 – Cisco IOS Denial-of-Service Vulnerability
https://notcve.org/view.php?id=CVE-2004-1464
31 Dec 2004 — Cisco IOS 12.2(15) and earlier allows remote attackers to cause a denial of service (refused VTY (virtual terminal) connections), via a crafted TCP connection to the Telnet or reverse Telnet port. Cisco IOS contains an unspecified vulnerability that may block further telnet, reverse telnet, Remote Shell (RSH), Secure Shell (SSH), and in some cases, Hypertext Transport Protocol (HTTP) access to the Cisco device. • http://secunia.com/advisories/12395 •
CVSS: 9.1EPSS: 1%CPEs: 69EXPL: 0CVE-2004-1775
https://notcve.org/view.php?id=CVE-2004-1775
31 Dec 2004 — Cisco VACM (View-based Access Control MIB) for Catalyst Operating Software (CatOS) 5.5 and 6.1 and IOS 12.0 and 12.1 allows remote attackers to read and modify device configuration via the read-write community string. • http://www.cisco.com/warp/public/707/ios-snmp-community-vulns-pub.shtml •