CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-5479
https://notcve.org/view.php?id=CVE-2013-5479
27 Sep 2013 — The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream, aka Bug ID CSCtn53730. La implementación de DNS sobre TCP en Cisco IOS 12.2 y 15.0 hasta 15.3, cuando se utiliza NAT, permite a un atacante remoto causar una denegación de servicio (recarga del dispositivo) a través de un stream Ipv4DNS TCP manipulado, tambien conocido como Bug ID CSCtn53730. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 5EXPL: 0CVE-2013-5480
https://notcve.org/view.php?id=CVE-2013-5480
27 Sep 2013 — The DNS-over-TCP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via a crafted IPv4 DNS TCP stream, aka Bug ID CSCuf28733. La implementación DNS sobre TCP en Cisco IOS 12.2 y 15.0 hasta 15.3, cuando se utiliza NAT, permite a un atacante remoto causar una denegación de servicio (recarga del dispositivo) a través de un stream IPv4 DNS TCP manipulado, tambien conocido como Bug ID CSCuf28733. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat • CWE-20: Improper Input Validation •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2013-5481
https://notcve.org/view.php?id=CVE-2013-5481
27 Sep 2013 — The PPTP implementation in Cisco IOS 12.2 and 15.0 through 15.3, when NAT is used, allows remote attackers to cause a denial of service (device reload) via crafted TCP port-1723 packets, aka Bug ID CSCtq14817. La implementación PPTP en Cisco 1.2.2 y 15.0 hasta 15.3, cuando se utiliza NAT, permite a atacantes remotos causar una denegación de servicio (recarga del dispositivo) a través de paquetes TCP manipulados (port-1723), aka Bug ID CSCtq14817. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-nat • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 0CVE-2013-5474
https://notcve.org/view.php?id=CVE-2013-5474
27 Sep 2013 — Race condition in the IPv6 virtual fragmentation reassembly (VFR) implementation in Cisco IOS 12.2 through 12.4 and 15.0 through 15.3 allows remote attackers to cause a denial of service (device reload or hang) via fragmented IPv6 packets, aka Bug ID CSCud64812. Condición de carrera en la implementación de IPv6 virtual fragmentation reassembly (VFR) en Cisco IOS 12.2 hasta 12.4 y 15.0 hasta 15.3 permite a un atacante remoto causar una denegación de servicio (recarga o cuelgue de dispositivo) a través de paq... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130925-ipv6vfr • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2013-1142
https://notcve.org/view.php?id=CVE-2013-1142
28 Mar 2013 — Race condition in the VRF-aware NAT feature in Cisco IOS 12.2 through 12.4 and 15.0 through 15.2 allows remote attackers to cause a denial of service (memory consumption) via IPv4 packets, aka Bug IDs CSCtg47129 and CSCtz96745. Condición de carrera en la funcionalidad VRF-Aware NAT en Cisco IOS 12.2 a la 12.4 y 15.0 a la 15.2, permite a atacantes remotos provocar una denegación de servicio (consumo de memoria) a través de paquetes IPv4. Aka Bug IDs CSCtg47129 y CSCtz96745. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-nat • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 7.5EPSS: 0%CPEs: 25EXPL: 0CVE-2013-1143
https://notcve.org/view.php?id=CVE-2013-1143
28 Mar 2013 — The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957. La implementación del protocolo RSVP en Cisco IOS 12.2 y 15.0 a la 15.2 e IOS XE 3.1.xS a la 3.4.xS anteior a 3.4.5S y 3.5.xS a la 3.7.xS anterior a... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-rsvp • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 0%CPEs: 6EXPL: 0CVE-2013-1146 – Cisco IOS Smart Install Configuration File Upload Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2013-1146
28 Mar 2013 — The Smart Install client functionality in Cisco IOS 12.2 and 15.0 through 15.3 on Catalyst switches allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790. La funcionalidad Smart Install del cliente de Cisco IOS v12.2 y v15.0 hasta v15.3 en los switches Catalyst permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de una lista de parámetros imagen en los paquetes de Sm... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-smartinstall • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2013-1147
https://notcve.org/view.php?id=CVE-2013-1147
28 Mar 2013 — The Protocol Translation (PT) functionality in Cisco IOS 12.3 through 12.4 and 15.0 through 15.3, when one-step port-23 translation or a Telnet-to-PAD ruleset is configured, does not properly validate TCP connection information, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a PT resource, aka Bug ID CSCtz35999. La funcionalidad Protocol Translation (PT) en Cisco IOS v12.3 hasta v12.4 y 15.0 hasta 15.3, cuando estan configuradas una traduccion one-s... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-pt • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 20EXPL: 0CVE-2013-1148
https://notcve.org/view.php?id=CVE-2013-1148
28 Mar 2013 — The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594. La implementación del General Responder en la función IP Service Level Agreement (SLA) en Cisco IOS XE v15.2 y v3.1.xS a través v3.4.xS antes de v3.4.5S y v3.5.xS a... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130327-ipsla • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2012-4617
https://notcve.org/view.php?id=CVE-2012-4617
27 Sep 2012 — The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a peer relationship and sending a malformed attribute, aka Bug IDs CSCtt35379, CSCty58300, CSCtz63248, and CSCtz62914. La implementación de BGP en Cisco IOS v15.2, IOS XE v3.5.xS anteriores a v3.5.2S, e IOS XR v4.1.0 hasta la v4.2.2 permite a atacantes remotos provocar una denegación de servicio (reseteo de múlti... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20120926-bgp • CWE-20: Improper Input Validation •