CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0CVE-2011-0350
https://notcve.org/view.php?id=CVE-2011-0350
28 Jan 2011 — Unspecified vulnerability in Cisco IOS 12.4(24)MD before 12.4(24)MD2 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to cause a denial of service (device hang or reload) via crafted TCP packets, aka Bug ID CSCth41891, a different vulnerability than CVE-2011-0349. Vulnerabilidad no especificada en Cisco IOS v12.4(24)MD anterior a v12.4(24)MD2 en el Cisco Content Services Gateway Second Generación (también conocido como CSG2) permite a atacantes remotos provocar una ... • http://osvdb.org/70722 •
CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0CVE-2011-0349
https://notcve.org/view.php?id=CVE-2011-0349
28 Jan 2011 — Unspecified vulnerability in Cisco IOS 12.4(24)MD before 12.4(24)MD2 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to cause a denial of service (device hang or reload) via crafted TCP packets, aka Bug ID CSCth17178, a different vulnerability than CVE-2011-0350. Vulnerabilidad no especificada en Cisco IOS v12.4(24)MD anterior a v12.4(24)MD2 en el Cisco Content Services Gateway Second Generación (también conocido como CSG2) permite a atacantes remotos provocar una ... • http://osvdb.org/70721 •
CVSS: 6.4EPSS: 0%CPEs: 8EXPL: 0CVE-2011-0348
https://notcve.org/view.php?id=CVE-2011-0348
28 Jan 2011 — Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD before 12.4(24)MD3, 12.4(22)MDA before 12.4(22)MDA5, and 12.4(24)MDA before 12.4(24)MDA3 on the Cisco Content Services Gateway Second Generation (aka CSG2) allows remote attackers to bypass intended access restrictions and intended billing restrictions by sending HTTP traffic to a restricted destination after sending HTTP traffic to an unrestricted destination, aka Bug ID CSCtk35917. Cisco IOS 12.4(11)MD, 12.4(15)MD, 12.4(22)MD, 12.4(24)MD antes de 12... • http://osvdb.org/70720 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 6.8EPSS: 0%CPEs: 1550EXPL: 0CVE-2009-5040
https://notcve.org/view.php?id=CVE-2009-5040
07 Jan 2011 — CallManager Express (CME) on Cisco IOS before 15.0(1)XA allows remote authenticated users to cause a denial of service (device crash) by using an extension mobility (EM) phone to interact with the menu for SNR number changes, aka Bug ID CSCta63555. CallManager Express (CME) en Cisco IOS en versiones anteriores a la 15.0(1)XA permite a usuarios autenticados remotos provocar una denegación de servicio (caída del dispositivo) haciendo que un teléfono "extension mobility" (EM) interactúe con el menu de cambios ... • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4683
https://notcve.org/view.php?id=CVE-2010-4683
07 Jan 2011 — Memory leak in Cisco IOS before 15.0(1)XA5 might allow remote attackers to cause a denial of service (memory consumption) by sending a crafted SIP REGISTER message over UDP, aka Bug ID CSCtg41733. Fuga de memoria en Cisco IOS anterior a v15.0(1)XA5 podría permitir a atacantes remotos provocar una denegación de servicio (consumo de memoria) mediante el envío de un mensaje SIP REGISTER sobre UDP, también conocido como bug id CSCtg41733. • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4685
https://notcve.org/view.php?id=CVE-2010-4685
07 Jan 2011 — Cisco IOS before 15.0(1)XA1 does not clear the public key cache upon a change to a certificate map, which allows remote authenticated users to bypass a certificate ban by connecting with a banned certificate that had previously been valid, aka Bug ID CSCta79031. Cisco IOS anterior a v15.0(1)XA1 no borra la caché de clave pública en caso de cambio a un mapa de certificado, que permite a usuarios remotos autenticados evitar la prohibición del certificado mediante la conexión con un certificado prohibido que h... • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-295: Improper Certificate Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4687
https://notcve.org/view.php?id=CVE-2010-4687
07 Jan 2011 — STCAPP (aka the SCCP telephony control application) on Cisco IOS before 15.0(1)XA1 does not properly handle multiple calls to a shared line, which allows remote attackers to cause a denial of service (port hang) by simultaneously ending two calls that were controlled by CallManager Express (CME), aka Bug ID CSCtd42552. STCAPP (también conocido como la aplicación de control de telefonía SCCP) en Cisco IOS anteriores a v15.0(1)XA1 no maneja adecuadamente múltiples llamadas a una línea compartida, que permite ... • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4684
https://notcve.org/view.php?id=CVE-2010-4684
07 Jan 2011 — Cisco IOS before 15.0(1)XA1, when certain TFTP debugging is enabled, allows remote attackers to cause a denial of service (device crash) via a TFTP copy over IPv6, aka Bug ID CSCtb28877. Cisco IOS anterior a 15.0(1)XA1, cuando ciertos TFTP de depuración está activados, permite a atacantes remotos provocar una denegación de servicio (caída de dispositivo) a través de una copia TFTP a través de IPv6, el fallo también conocido como ID CSCtb28877. • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2009-5038
https://notcve.org/view.php?id=CVE-2009-5038
07 Jan 2011 — Cisco IOS before 15.0(1)XA does not properly handle IRC traffic during a specific time period after an initial reload, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a certain IRC server, related to a "corrupted magic value," aka Bug ID CSCso05336. Cisco IOS en versiones anteriores a la 15.0(1)XA no maneja apropiadamente el tráfico IRC durante un periodo de tiempo específico después de una recarga inicial, lo que permite a atacantes remotos provocar... • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2010-4686
https://notcve.org/view.php?id=CVE-2010-4686
07 Jan 2011 — CallManager Express (CME) on Cisco IOS before 15.0(1)XA1 does not properly handle SIP TRUNK traffic that contains rate bursts and a "peculiar" request size, which allows remote attackers to cause a denial of service (memory consumption) by sending this traffic over a long duration, aka Bug ID CSCtb47950. CallManager Express (CME) en Cisco IOS anteriores a v15.0(1)XA1 no maneja adecuadamente el tráfico SIP TRUNK que contiene las ráfagas y una tamaño de petición "peculiar", que permite a atacantes remotos pro... • http://www.cisco.com/en/US/docs/ios/15_0/15_0x/15_01_XA/rn800xa.pdf • CWE-400: Uncontrolled Resource Consumption •