CVE-2001-0537 – Cisco IOS 11.x/12.x - HTTP Configuration Arbitrary Administrative Access
https://notcve.org/view.php?id=CVE-2001-0537
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL. • https://www.exploit-db.com/exploits/20975 https://www.exploit-db.com/exploits/20976 https://www.exploit-db.com/exploits/20977 https://www.exploit-db.com/exploits/20978 http://www.cert.org/advisories/CA-2001-14.html http://www.ciac.org/ciac/bulletins/l-106.shtml http://www.cisco.com/warp/public/707/IOS-httplevel-pub.html http://www.osvdb.org/578 http://www.securityfocus.com/archive/1/1601227034.20010702112207%40olympos.org http://www.securityfocus.com/archive/1/ • CWE-287: Improper Authentication •
CVE-2001-1183
https://notcve.org/view.php?id=CVE-2001-1183
PPTP implementation in Cisco IOS 12.1 and 12.2 allows remote attackers to cause a denial of service (crash) via a malformed packet. • http://www.cisco.com/warp/public/707/PPTP-vulnerability-pub.html http://www.kb.cert.org/vuls/id/656315 http://www.osvdb.org/802 http://www.securityfocus.com/bid/3022 https://exchange.xforce.ibmcloud.com/vulnerabilities/6835 •