CVSS: 7.8EPSS: 2%CPEs: 3EXPL: 0CVE-2010-0583
https://notcve.org/view.php?id=CVE-2010-0583
25 Mar 2010 — Memory leak in the H.323 implementation in Cisco IOS 12.1 through 12.4, and 15.0M before 15.0(1)M1, allows remote attackers to cause a denial of service (memory consumption and device reload) via malformed H.323 packets, aka Bug ID CSCtb93855. Fuga de memoria en la implementación H.323 en Cisco IOS v12.1 a la v12.4, y v15.0M anterior a v15.0(1)M1, permite a atacantes remotos provocar una denegación de servicio (consumo de memoria y reinicio de dispositivo) a través de paquetes H.323 mal formados. También co... • http://osvdb.org/63181 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 93EXPL: 0CVE-2010-0586
https://notcve.org/view.php?id=CVE-2010-0586
25 Mar 2010 — Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) or Cisco Unified Survivable Remote Site Telephony (SRST) is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed Skinny Client Control Protocol (SCCP) message, aka Bug ID CSCsz49741, the "SCCP Request Handling Denial of Service Vulnerability." Cisco IOS v12.1 hasta v12.4, cuando Cisco Unified Communications Manager Express (CME) o Cisco Unified Survivable Remote Site Telephony (SRST)... • http://osvdb.org/63177 •
CVSS: 7.8EPSS: 0%CPEs: 93EXPL: 0CVE-2010-0585
https://notcve.org/view.php?id=CVE-2010-0585
25 Mar 2010 — Cisco IOS 12.1 through 12.4, when Cisco Unified Communications Manager Express (CME) or Cisco Unified Survivable Remote Site Telephony (SRST) is enabled, allows remote attackers to cause a denial of service (device reload) via a malformed Skinny Client Control Protocol (SCCP) message, aka Bug ID CSCsz48614, the "SCCP Packet Processing Denial of Service Vulnerability." Cisco IOS v12.1 a la v12.4, cuando Cisco Unified Communications Manager Express (CME) o Cisco Unified Survivable Remote Site Telephony (SRST)... • http://secunia.com/advisories/39069 •
CVSS: 10.0EPSS: 2%CPEs: 44EXPL: 0CVE-2010-0581
https://notcve.org/view.php?id=CVE-2010-0581
25 Mar 2010 — Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz89904, the "SIP Packet Parsing Arbitrary Code Execution Vulnerability." Vulnerabilidad sin especificar en la implementación SIP en Cisco IOS v12.3 y v12.4, permite a atacantes remotos ejecutar código de su elección a través de un mensaje SIP mal formado. También conocido como Bug ID CSCsz89904. • http://secunia.com/advisories/39068 •
CVSS: 7.8EPSS: 0%CPEs: 40EXPL: 0CVE-2009-2868
https://notcve.org/view.php?id=CVE-2009-2868
28 Sep 2009 — Unspecified vulnerability in Cisco IOS 12.2 through 12.4, when certificate-based authentication is enabled for IKE, allows remote attackers to cause a denial of service (Phase 1 SA exhaustion) via crafted requests, aka Bug IDs CSCsy07555 and CSCee72997. Vulnerabilidad sin especificar en Cisco IOS v12.2 hasta la v12.4. Cuando la autenticación basada en certificado está activada, permite a usuarios remotos provocar una denegación de servicio (agotamiento de Phase 1 SA) a través de peticiones modificadas. Tamb... • http://tools.cisco.com/security/center/viewAlert.x?alertId=18887 •
CVSS: 7.8EPSS: 1%CPEs: 8EXPL: 0CVE-2009-2867
https://notcve.org/view.php?id=CVE-2009-2867
28 Sep 2009 — Unspecified vulnerability in Cisco IOS 12.2XNA, 12.2XNB, 12.2XNC, 12.2XND, 12.4T, 12.4XZ, and 12.4YA, when Zone-Based Policy Firewall SIP Inspection is enabled, allows remote attackers to cause a denial of service (device reload) via a crafted SIP transit packet, aka Bug ID CSCsr18691. Vulnerabilidad sin especificar en Cisco IOS 1v2.2XNA, v12.2XNB, v12.2XNC, v12.2XND, v12.4T, v12.4XZ y v12.4YA. Cuando la función "Policy Firewall SIP Inspection" está activada, permite a usuarios remotos provocar una denegaci... • http://tools.cisco.com/security/center/viewAlert.x?alertId=18886 •
CVSS: 7.8EPSS: 0%CPEs: 17EXPL: 0CVE-2009-2871
https://notcve.org/view.php?id=CVE-2009-2871
28 Sep 2009 — Unspecified vulnerability in Cisco IOS 12.2 and 12.4, when SSLVPN sessions, SSH sessions, or IKE encrypted nonces are enabled, allows remote attackers to cause a denial of service (device reload) via a crafted encrypted packet, aka Bug ID CSCsq24002. Vulnerabilidad sin especificar en Cisco IOS v12.2 y v12.4, cuando estan activadas las sesiones SSLVPN, las sesiones SSH o las "nonces" (cadenas de caracteres de un sólo uso) encriptadas IKE, permite a usuarios remotos provocar una denegación de servicio (recarg... • http://tools.cisco.com/security/center/viewAlert.x?alertId=18892 •
CVSS: 9.8EPSS: 1%CPEs: 5EXPL: 0CVE-2009-2865
https://notcve.org/view.php?id=CVE-2009-2865
28 Sep 2009 — Buffer overflow in the login implementation in the Extension Mobility feature in the Unified Communications Manager Express (CME) component in Cisco IOS 12.4XW, 12.4XY, 12.4XZ, and 12.4YA allows remote attackers to execute arbitrary code or cause a denial of service via crafted HTTP requests, aka Bug ID CSCsq58779. Desbordamiento de búfer en la implementación del inicio de sesión de la característica "Extension Mobility" del componente "Unified Communications Manager Express" (CME) de Cisco IOS v12.4XW, v12... • http://osvdb.org/58335 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 8.1EPSS: 0%CPEs: 136EXPL: 0CVE-2009-2863
https://notcve.org/view.php?id=CVE-2009-2863
28 Sep 2009 — Race condition in the Firewall Authentication Proxy feature in Cisco IOS 12.0 through 12.4 allows remote attackers to bypass authentication, or bypass the consent web page, via a crafted request, aka Bug ID CSCsy15227. Una condición de carrera en la función Firewall Authentication Proxy de Cisco IOS v12.0 hasta la v12.4 permite a atacantes remotos evitar la autenticación, o saltarse la página web de la autorización, a través de una solicitud debidamente modificada. Se trata del Bug ID CSCsy15227. • http://osvdb.org/58340 • CWE-287: Improper Authentication •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2009-2862
https://notcve.org/view.php?id=CVE-2009-2862
28 Sep 2009 — The Object Groups for Access Control Lists (ACLs) feature in Cisco IOS 12.2XNB, 12.2XNC, 12.2XND, 12.4MD, 12.4T, 12.4XZ, and 12.4YA allows remote attackers to bypass intended access restrictions via crafted requests, aka Bug IDs CSCsx07114, CSCsu70214, CSCsw47076, CSCsv48603, CSCsy54122, and CSCsu50252. Los "Object Groups" (grupos de objetos) para la funcionalidad de listas de control de acceso (ACLs) en Cisco IOS v12.2XNB, v12.2XNC, v12.2XND, v12.4MD, v12.4T, v12.4XZ y v12.4YA permiten a los usuarios remot... • http://osvdb.org/58338 •