CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-5479
https://notcve.org/view.php?id=CVE-2013-5479
27 Sep 2013 — The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream, aka Bug ID CSCtn53730. La implementación de DNS sobre TCP en Cisco IOS 12.2 y 15.0 hasta 15.3, cuando se utiliza NAT, permite a un atacante remoto causar una denegación de servicio (recarga del dispositivo) a través de un stream Ipv4DNS TCP manipulado, tambien conocido como Bug ID CSCtn53730. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-5474
https://notcve.org/view.php?id=CVE-2013-5474
27 Sep 2013 — Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device reload or hang) via fragmented IPv6 packets, aka Bug ID CSCud64812. Condición de carrera en la implementación de IPv6 virtual fragmentation reassembly (VFR) en Cisco IOS 12.2 hasta 12.4 y 15.0 hasta 15.3 permite a un atacante remoto causar una denegación de servicio (recarga o cuelgue de dispositivo) a través de paq... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ipv6vfr • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2013-1147
https://notcve.org/view.php?id=CVE-2013-1147
28 Mar 2013 — The Protocol Translation (PT) functionality in Cisco IOS 12.3 through 12.4 and 15.0 through 15.3, when one-step port-23 translation or a Telnet-to-PAD ruleset is configured, does not properly validate TCP connection information, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a PT resource, aka Bug ID CSCtz35999. La funcionalidad Protocol Translation (PT) en Cisco IOS v12.3 hasta v12.4 y 15.0 hasta 15.3, cuando estan configuradas una traduccion one-s... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-pt • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2013-1146 – Cisco IOS Smart Install Configuration File Upload Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1146
28 Mar 2013 — The Smart Install client functionality in Cisco IOS 12.2 and 15.0 through 15.3 on Catalyst switches allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790. La funcionalidad Smart Install del cliente de Cisco IOS v12.2 y v15.0 hasta v15.3 en los switches Catalyst permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de una lista de parámetros imagen en los paquetes de Sm... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-smartinstall • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1142
https://notcve.org/view.php?id=CVE-2013-1142
28 Mar 2013 — Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 allows remote attackers to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745. Condición de carrera en la funcionalidad VRF-Aware NAT en Cisco IOS 12.2 a la 12.4 y 15.0 a la 15.2, permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) a través de paquetes IPv4. Aka Bug IDs CSCtg47129 y CSCtz96745. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-nat • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.5EPSS: 0%CPEs: 25EXPL: 0CVE-2013-1143
https://notcve.org/view.php?id=CVE-2013-1143
28 Mar 2013 — The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957. La implementación del protocolo RSVP en Cisco IOS 12.2 y 15.0 a la 15.2 e IOS XE 3.1.xS a la 3.4.xS anteior a 3.4.5S y 3.5.xS a la 3.7.xS anterior a... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-rsvp • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2013-1148
https://notcve.org/view.php?id=CVE-2013-1148
28 Mar 2013 — The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594. La implementación del General Responder en la función IP Service Level Agreement (SLA) en Cisco IOS XE v15.2 y v3.1.xS a través v3.4.xS antes de v3.4.5S y v3.5.xS a... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-ipsla • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2012-4619
https://notcve.org/view.php?id=CVE-2012-4619
27 Sep 2012 — The NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtr46123. La implementación de NAT en Cisco IOS v12.2, v12.4, y v15.0 hasta v15.2 permite a atacantes remotos provocar una denegación de servicio (recarga del dispositivo) a través del tránsito de paquetes IP, también conocido como Bug ID CSCtr46123. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-nat • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2012-4620
https://notcve.org/view.php?id=CVE-2012-4620
27 Sep 2012 — Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP, (2) IPIP, or (3) IPv6 in IPv4 packets, aka Bug ID CSCts66808. Cisco IOS v12.2 y v15.0 hasta la v15.2 en router de la serie Cisco 10000, cuando hay un interfase de tunel, permite a atacantes remotos provocar una denegación de servicio (troceado de la cola del interfase) a través de una tunelización de paquetes... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-c10k-tunnels • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 293EXPL: 0CVE-2012-3950
https://notcve.org/view.php?id=CVE-2012-3950
27 Sep 2012 — The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to cause a denial of service (device reload) via DNS packets, aka Bug ID CSCtw55976. La función Intrusion Prevention System (IPS) en Cisco IOS v12.3 hasta la v12.4 y v15.0 hasta la v15.2, en ciertas configuraciones de categorías disponibles y ausencia de firmas, permite a atacantes remotos provocar una denegación d... • http://secunia.com/advisories/50777 • CWE-399: Resource Management Errors •