CVSS: 7.5EPSS: 7%CPEs: 138EXPL: 0CVE-2005-3669
https://notcve.org/view.php?id=CVE-2005-3669
18 Nov 2005 — Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the lack of details in the Cisco advisory, it is unclear which of CVE-2005-3666, CVE-2005-3667, and/or CVE-2005-3668 this issue applies to. • http://jvn.jp/niscc/NISCC-273756/index.html •
CVSS: 9.8EPSS: 5%CPEs: 228EXPL: 0CVE-2005-3481
https://notcve.org/view.php?id=CVE-2005-3481
03 Nov 2005 — Cisco IOS 12.0 to 12.4 might allow remote attackers to execute arbitrary code via a heap-based buffer overflow in system timers. NOTE: this issue does not correspond to a specific vulnerability, rather a general weakness that only increases the feasibility of exploitation of any vulnerabilities that might exist. Such design-level weaknesses normally are not included in CVE, so perhaps this issue should be REJECTed. • http://secunia.com/advisories/17413 •
CVSS: 9.8EPSS: 92%CPEs: 6EXPL: 1CVE-2005-2841 – Cisco IOS 12.x - Firewall Authentication Proxy Buffer Overflow
https://notcve.org/view.php?id=CVE-2005-2841
08 Sep 2005 — Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted user authentication credentials. • https://www.exploit-db.com/exploits/26233 •
CVSS: 9.8EPSS: 15%CPEs: 148EXPL: 0CVE-2005-2451
https://notcve.org/view.php?id=CVE-2005-2451
03 Aug 2005 — Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial of service (device reload) and possibly execute arbitrary code via a crafted IPv6 packet. Cisco IOS 12.0 hasta 12.4 y IOS XR anterior a 3.2 con IPv6 habilitado, permite que atacantes remotos en un segmento de red local provoquen una denegación de servicio (recarga del dispositivo) y posiblmemente ejecuten código arbitrario mediante un paquete IPv6 amañado. • http://archives.neohapsis.com/archives/fulldisclosure/2005-07/0663.html •
CVSS: 9.8EPSS: 0%CPEs: 92EXPL: 0CVE-2005-2105
https://notcve.org/view.php?id=CVE-2005-2105
01 Jul 2005 — Cisco IOS 12.2T through 12.4 allows remote attackers to bypass Authentication, Authorization, and Accounting (AAA) RADIUS authentication, if the fallback method is set to none, via a long username. • http://www.cisco.com/warp/public/707/cisco-sa-20050629-aaa.shtml •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1058
https://notcve.org/view.php?id=CVE-2005-1058
12 Apr 2005 — Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote attackers to bypass XAUTH and move to Phase 2 negotiations. • http://www.cisco.com/warp/public/707/cisco-sa-20050406-xauth.shtml •
CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2005-1057
https://notcve.org/view.php?id=CVE-2005-1057
12 Apr 2005 — Cisco IOS 12.2T, 12.3 and 12.3T, when using Easy VPN Server XAUTH version 6 authentication, allows remote attackers to bypass authentication via a "malformed packet." • http://www.cisco.com/warp/public/707/cisco-sa-20050406-xauth.shtml •
CVSS: 7.5EPSS: 1%CPEs: 93EXPL: 0CVE-2005-1021
https://notcve.org/view.php?id=CVE-2005-1021
09 Apr 2005 — Memory leak in Secure Shell (SSH) in Cisco IOS 12.0 through 12.3, when authenticating against a TACACS+ server, allows remote attackers to cause a denial of service (memory consumption) via an incorrect username or password. • http://secunia.com/advisories/14854 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 3%CPEs: 337EXPL: 0CVE-2005-1020
https://notcve.org/view.php?id=CVE-2005-1020
09 Apr 2005 — Secure Shell (SSH) 2 in Cisco IOS 12.0 through 12.3 allows remote attackers to cause a denial of service (device reload) (1) via a username that contains a domain name when using a TACACS+ server to authenticate, (2) when a new SSH session is in the login phase and a currently logged in user issues a send command, or (3) when IOS is logging messages and an SSH session is terminated while the server is sending data. • http://secunia.com/advisories/14854 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 1%CPEs: 5EXPL: 0CVE-2005-0197
https://notcve.org/view.php?id=CVE-2005-0197
06 Feb 2005 — Cisco IOS 12.1T, 12.2, 12.2T, 12.3 and 12.3T, with Multi Protocol Label Switching (MPLS) installed but disabled, allows remote attackers to cause a denial of service (device reload) via a crafted packet sent to the disabled interface. • http://secunia.com/advisories/14031 • CWE-16: Configuration •