CVSS: 7.8EPSS: 0%CPEs: 23EXPL: 0CVE-2015-0650
https://notcve.org/view.php?id=CVE-2015-0650
The Service Discovery Gateway (aka mDNS Gateway) in Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, and 15.4 and IOS XE 3.9.xS and 3.10.xS before 3.10.4S, 3.11.xS before 3.11.3S, 3.12.xS before 3.12.2S, and 3.13.xS before 3.13.1S allows remote attackers to cause a denial of service (device reload) by sending malformed mDNS UDP packets over (1) IPv4 or (2) IPv6, aka Bug ID CSCup70579. Service Discovery Gateway (también conocido como mDNS Gateway) en Cisco IOS 12.2, 12.4, 15.0, 15.1, 15.2, 15.3, y 15.4 y IOS XE 3.9.xS y 3.10.xS anterior a 3.10.4S, 3.11.xS anterior a 3.11.3S, 3.12.xS anterior a 3.12.2S, y 3.13.xS anterior a 3.13.1S permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) mediante el envío de paquetes mDNS UDP malformados por (1) IPv4 o (2) IPv6, también conocido como Bug ID CSCup70579. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150325-mdns http://www.securitytracker.com/id/1031979 • CWE-20: Improper Input Validation •
CVSS: 6.1EPSS: 0%CPEs: 2EXPL: 0CVE-2014-3409
https://notcve.org/view.php?id=CVE-2014-3409
The Ethernet Connectivity Fault Management (CFM) handling feature in Cisco IOS 12.2(33)SRE9a and earlier and IOS XE 3.13S and earlier allows remote attackers to cause a denial of service (device reload) via malformed CFM packets, aka Bug ID CSCuq93406. La caracteristica del manejador Ethernet Connectivity Fault Management (CFM) en Cisco IOS 12.2(33)SRE9a y anteriores e IOS XE 3.13S y anteriores permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de paquetes CFM malformados, también conocido como Bug ID CSCuq93406. • http://secunia.com/advisories/61799 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3409 http://tools.cisco.com/security/center/viewAlert.x?alertId=36184 http://www.securityfocus.com/bid/70715 http://www.securitytracker.com/id/1031119 https://exchange.xforce.ibmcloud.com/vulnerabilities/97758 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 10EXPL: 0CVE-2014-3358
https://notcve.org/view.php?id=CVE-2014-3358
Memory leak in Cisco IOS 15.0, 15.1, 15.2, and 15.4 and IOS XE 3.3.xSE before 3.3.2SE, 3.3.xXO before 3.3.1XO, 3.5.xE before 3.5.2E, and 3.11.xS before 3.11.1S allows remote attackers to cause a denial of service (memory consumption, and interface queue wedge or device reload) via malformed mDNS packets, aka Bug ID CSCuj58950. Fuga de información en Cisco IOS 15.0, 15.1, 15.2, y 15.4 y IOS XE 3.3.xSE anterior a 3.3.2SE, 3.3.xXO anterior a 3.3.1XO, 3.5.xE anterior a 3.5.2E, y 3.11.xS anterior a 3.11.1S permite a atacantes remotos causar una denegación de servicio (consumo de memoria o recarga de dispositivo) a través de paquetes mDNS malformados, también conocido como Bug ID CSCuj58950. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-mdns http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-mdns/cvrf/cisco-sa-20140924-mdns_cvrf.xml http://www.securityfocus.com/bid/70139 http://www.securitytracker.com/id/1030898 https://exchange.xforce.ibmcloud.com/vulnerabilities/96183 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 1%CPEs: 34EXPL: 0CVE-2014-3359
https://notcve.org/view.php?id=CVE-2014-3359
Memory leak in Cisco IOS 15.1 through 15.4 and IOS XE 3.4.xS, 3.5.xS, 3.6.xS, and 3.7.xS before 3.7.6S; 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S; and 3.11.xS before 3.12S allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed DHCPv6 packets, aka Bug ID CSCum90081. Fuga de información en Cisco IOS 15.1 hasta 15.4 y IOS XE 3.4.xS, 3.5.xS, 3.6.xS, y 3.7.xS anterior a 3.7.6S; 3.8.xS, 3.9.xS, y 3.10.xS anterior a 3.10.1S; y 3.11.xS anterior a 3.12S permite a atacantes remotos causar una denegación de servicio (consumo de memoria o recarga de dispositivo) a través de paquetes DHCPv6 malformados, también conocido como Bug ID CSCum90081. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-dhcpv6 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-dhcpv6/cvrf/cisco-sa-20140924-dhcpv6_cvrf.xml http://www.securityfocus.com/bid/70140 http://www.securitytracker.com/id/1030895 https://exchange.xforce.ibmcloud.com/vulnerabilities/96177 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 1%CPEs: 46EXPL: 0CVE-2014-3360
https://notcve.org/view.php?id=CVE-2014-3360
Cisco IOS 12.4 and 15.0 through 15.4 and IOS XE 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, 3.5.xS, 3.6.xS, and 3.7.xS before 3.7.6S; 3.8.xS, 3.9.xS, and 3.10.xS before 3.10.1S; and 3.11.xS before 3.12S allow remote attackers to cause a denial of service (device reload) via a crafted SIP message, aka Bug ID CSCul46586. Cisco IOS 12.4 y 15.0 hasta 15.4 y IOS XE 3.1.xS, 3.2.xS, 3.3.xS, 3.4.xS, 3.5.xS, 3.6.xS, y 3.7.xS anterior a 3.7.6S; 3.8.xS, 3.9.xS, y 3.10.xS anterior a 3.10.1S; y 3.11.xS anterior a 3.12S permite a atacantes remotos causar una denegación de servicio (recarga de dispositivo) a través de un mensaje SIP manipulado, también conocido como Bug ID CSCul46586. • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-sip http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140924-sip/cvrf/cisco-sa-20140924-sip_cvrf.xml http://www.securityfocus.com/bid/70141 http://www.securitytracker.com/id/1030897 https://exchange.xforce.ibmcloud.com/vulnerabilities/96174 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •