CVSS: 7.8EPSS: 0%CPEs: 235EXPL: 0CVE-2010-2834
https://notcve.org/view.php?id=CVE-2010-2834
23 Sep 2010 — Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5)SU1, 7.x before 7.1(5), and 8.0 before 8.0(2) allow remote attackers to cause a denial of service (device reload or voice-services outage) via crafted SIP registration traffic over UDP, aka Bug IDs CSCtf72678 and CSCtf14987. Cisco IOS v12.2 hasta v12.4 y v15.0 hasta v15.1, Cisco IOS XE v2.5.x y v2.6.x anterior a v2.6.1, y Cis... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a30f.shtml •
CVSS: 7.8EPSS: 0%CPEs: 232EXPL: 0CVE-2010-2835
https://notcve.org/view.php?id=CVE-2010-2835
23 Sep 2010 — Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 6.x before 6.1(5), 7.0 before 7.0(2a)su3, 7.1su before 7.1(3b)su2, 7.1 before 7.1(5), and 8.0 before 8.0(1) allow remote attackers to cause a denial of service (device reload or voice-services outage) via a SIP REFER request with an invalid Refer-To header, aka Bug IDs CSCta20040 and CSCta31358. Cisco IOS v12.2 hasta v12.4 y v15.0 hasta v15.1... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a30f.shtml •
CVSS: 7.8EPSS: 0%CPEs: 31EXPL: 0CVE-2010-2836
https://notcve.org/view.php?id=CVE-2010-2836
23 Sep 2010 — Memory leak in the SSL VPN feature in Cisco IOS 12.4, 15.0, and 15.1, when HTTP port redirection is enabled, allows remote attackers to cause a denial of service (memory consumption) by improperly disconnecting SSL sessions, leading to connections that remain in the CLOSE-WAIT state, aka Bug ID CSCtg21685. Fuga de memoria en la funcionalidad SSL VPN en Cisco IOS v12.4, v15.0, y v15.1, cuando HTTP port redirection está habilitado, permite a atacantes remotos causar una denegación de servicio (corrupción de m... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4a312.shtml • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2010-2827
https://notcve.org/view.php?id=CVE-2010-2827
16 Aug 2010 — Cisco IOS 15.1(2)T allows remote attackers to cause a denial of service (resource consumption and TCP outage) via spoofed TCP packets, related to embryonic TCP connections that remain in the SYN_RCVD or SYN_SENT state, aka Bug ID CSCti18193. Cisco IOS 15.1(2)T permite a atacantes remotos provocar una denegación de servicio (consumo de recursos y caída de TCP) a través de paquetes TCP enmascarados, relacionado con conexiones TCP embrionarias que mantienen el estado SYN_RCVD o SYN_SENT. También conocido como ... • http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4095e.shtml • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 1%CPEs: 6EXPL: 0CVE-2009-2051
https://notcve.org/view.php?id=CVE-2009-2051
27 Aug 2009 — Cisco IOS 12.2 through 12.4 and 15.0 through 15.1, Cisco IOS XE 2.5.x and 2.6.x before 2.6.1, and Cisco Unified Communications Manager (aka CUCM, formerly CallManager) 4.x, 5.x before 5.1(3g), 6.x before 6.1(4), and 7.x before 7.1(2) allow remote attackers to cause a denial of service (device reload or voice-services outage) via a malformed SIP INVITE message that triggers an improper call to the sipSafeStrlen function, aka Bug IDs CSCsz40392 and CSCsz43987. Cisco Unified Communications Manager (también con... • http://osvdb.org/57453 •
CVSS: 7.5EPSS: 0%CPEs: 2049EXPL: 1CVE-2008-4609
https://notcve.org/view.php?id=CVE-2008-4609
20 Oct 2008 — The TCP implementation in (1) Linux, (2) platforms based on BSD Unix, (3) Microsoft Windows, (4) Cisco products, and probably other operating systems allows remote attackers to cause a denial of service (connection queue exhaustion) via multiple vectors that manipulate information in the TCP state table, as demonstrated by sockstress. La implementación del protocolo TCP en (1) Linux, (2) plataformas basadas en BSD Unix, (3) Microsoft Windows, (4) productos Cisco, y probablemente otros sistemas operativos, p... • https://github.com/mrclki/sockstress • CWE-16: Configuration •
CVSS: 9.8EPSS: 49%CPEs: 1429EXPL: 2CVE-2007-5381 – Cisco IOS 12.3 - 'LPD' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-5381
12 Oct 2007 — Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet session to the LPD from a source port other than 515. Desbordamiento de búfer basado en pila en Line Printer Daemon (LPD) en Cisco IOS anterior a 12.2(18)SXF11, 12.4(16a), y 12.4(2)T6 permite a atacantes remotos ejecutar... • https://www.exploit-db.com/exploits/30652 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 1%CPEs: 337EXPL: 0CVE-2005-1020
https://notcve.org/view.php?id=CVE-2005-1020
09 Apr 2005 — Secure Shell (SSH) 2 in Cisco IOS 12.0 through 12.3 allows remote attackers to cause a denial of service (device reload) (1) via a username that contains a domain name when using a TACACS+ server to authenticate, (2) when a new SSH session is in the login phase and a currently logged in user issues a send command, or (3) when IOS is logging messages and an SSH session is terminated while the server is sending data. • http://secunia.com/advisories/14854 • CWE-287: Improper Authentication •