Page 15 of 228 results (0.004 seconds)

CVSS: 7.5EPSS: 0%CPEs: 8EXPL: 0

18 Sep 2015 — Cisco IOS 15.2(3)E and earlier and IOS XE 3.6(2)E and earlier allow remote attackers to cause a denial of service (functionality loss) via crafted Cisco Discovery Protocol (CDP) packets, aka Bug ID CSCuu25770. Vulnerabilidad en Cisco IOS 15.2(3)E y versiones anteriores y IOS XE 3.6(2)E y versiones anteriores, permite a atacantes remotos provocar una denegación de servicio (pérdida de funcionalidad) a través de paquetes Cisco Discovery Protocol (CDP) modificados, también conocida como Bug ID CSCuu25770. • http://tools.cisco.com/security/center/viewAlert.x?alertId=41006 • CWE-399: Resource Management Errors •

CVSS: 7.5EPSS: 0%CPEs: 62EXPL: 0

24 Jul 2015 — The TFTP server in Cisco IOS 12.2(44)SQ1, 12.2(33)XN1, 12.4(25e)JAM1, 12.4(25e)JAO5m, 12.4(23)JY, 15.0(2)ED1, 15.0(2)EY3, 15.1(3)SVF4a, and 15.2(2)JB1 and IOS XE 2.5.x, 2.6.x, 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, and 3.5.xS before 3.6.0S; 3.1.xSG, 3.2.xSG, and 3.3.xSG before 3.4.0SG; 3.2.xSE before 3.3.0SE; 3.2.xXO before 3.3.0XO; 3.2.xSQ; 3.3.xSQ; and 3.4.xSQ allows remote attackers to cause a denial of service (device hang or reload) via multiple requests that trigger improper memory management, aka Bug ID CSC... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150722-tftp • CWE-399: Resource Management Errors •

CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0

13 Jun 2015 — The TCL interpreter in Cisco IOS 15.2 does not properly maintain the vty state, which allows local users to gain privileges by starting a session very soon after a TCL script execution, aka Bug ID CSCuq24202. El interprete TCL en Cisco IOS 15.2 no mantiene correctamente el estado vty, lo que permite a usuarios locales ganar privilegios mediante el comienzo de una sesión muy pronto después de una ejecución de secuencias de comandos TCL, también conocido como Bug ID CSCuq24202. • http://tools.cisco.com/security/center/viewAlert.x?alertId=39343 • CWE-264: Permissions, Privileges, and Access Controls •

CVSS: 9.1EPSS: 0%CPEs: 43EXPL: 0

26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to spoof Autonomic Networking Registration Authority (ANRA) responses, and consequently bypass intended device and node access restrictions or cause a denial of service (disrupted domain access), via crafted AN messages, aka Bug ID CSCup62191. La implementación Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 1%CPEs: 29EXPL: 0

26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (disrupted domain access) via spoofed AN messages that reset a finite state machine, aka Bug ID CSCup62293. La implemenatción Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.10.xS hasta 3.13.xS anterior a 3.13.1S permite a atacantes remotos ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 1%CPEs: 41EXPL: 0

26 Mar 2015 — The Autonomic Networking Infrastructure (ANI) implementation in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.10.xS through 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) via spoofed AN messages, aka Bug ID CSCup62315. La implemenatción Autonomic Networking Infrastructure (ANI) en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.10.xS hasta 3.13.xS anterior a 3.13.1S permite a atacantes remotos causar una denegación de servicio (recarga d... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ani • CWE-20: Improper Input Validation •

CVSS: 7.5EPSS: 1%CPEs: 31EXPL: 0

26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.2, and 15.3, when a VRF interface is configured, allows remote attackers to cause a denial of service (interface queue wedge) via crafted ICMPv4 packets, aka Bug ID CSCsi02145. Cisco IOS 12.2, 12.4, 15.0, 15.2, y 15.3, cuando una interfaz VRF está configurado, permite a atacantes remotos causar una denegación de servicio (presión en la cola de la interfaz) a través de paquetes ICMPv4 manipulados, también conocido como Bug ID CSCsi02145. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-wedge • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 1%CPEs: 84EXPL: 0

26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum36951. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 2.5.x, 2.6.x, 3.1.xS hasta 3.12.xS anterior a 3.12.3S, 3.2.xE hasta 3.7.xE anterior a 3.7.1E, 3.... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2 • CWE-20: Improper Input Validation •

CVSS: 7.8EPSS: 1%CPEs: 63EXPL: 0

26 Mar 2015 — Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 2.5.x, 2.6.x, 3.1.xS through 3.12.xS before 3.12.3S, 3.2.xE through 3.7.xE before 3.7.1E, 3.3.xSG, 3.4.xSG, and 3.13.xS before 3.13.2S allow remote attackers to cause a denial of service (memory consumption and device reload) by sending malformed IKEv2 packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCuo75572. Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 2.5.x, 2.6.x, 3.1.xS hasta 3.12.xS anterior a 3.12.3S, 3.2.xE hasta 3.7.x... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-ikev2 • CWE-399: Resource Management Errors •

CVSS: 7.8EPSS: 1%CPEs: 36EXPL: 0

26 Mar 2015 — Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS through 3.10.xS before 3.10.5S, and 3.11.xS and 3.12.xS before 3.12.3S allows remote attackers to cause a denial of service (memory consumption or device reload) by sending crafted TCP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCum94811. Fuga de memoria en el módulo de entradas de TCP en Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, y 15.4 y IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-tcpleak • CWE-399: Resource Management Errors •