CVSS: 7.5EPSS: 96%CPEs: 39EXPL: 2CVE-2000-0380 – Cisco IOS 11.x/12.x - HTTP %%
https://notcve.org/view.php?id=CVE-2000-0380
26 Apr 2000 — The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string. • https://packetstorm.news/files/id/180482 • CWE-20: Improper Input Validation •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1465
https://notcve.org/view.php?id=CVE-1999-1465
31 Dec 1999 — Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862. • http://ciac.llnl.gov/ciac/bulletins/j-016.shtml •
CVSS: 9.1EPSS: 0%CPEs: 1EXPL: 0CVE-1999-1175
https://notcve.org/view.php?id=CVE-1999-1175
31 Dec 1999 — Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048. • http://www.ciac.org/ciac/bulletins/i-054.shtml •
CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 0CVE-1999-1129
https://notcve.org/view.php?id=CVE-1999-1129
01 Sep 1999 — Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag. • http://www.cisco.com/univercd/cc/td/doc/product/lan/28201900/1928v8x/eescg8x/aleakyv.htm •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-1999-0775
https://notcve.org/view.php?id=CVE-1999-0775
10 Jun 1999 — Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0775 •
CVSS: 9.1EPSS: 1%CPEs: 1EXPL: 0CVE-1999-0162
https://notcve.org/view.php?id=CVE-1999-0162
01 Sep 1998 — The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering. • https://www.cve.org/CVERecord?id=CVE-1999-0162 •
CVSS: 7.5EPSS: 2%CPEs: 16EXPL: 0CVE-1999-0159
https://notcve.org/view.php?id=CVE-1999-0159
12 Aug 1998 — Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0159 •
CVSS: 9.8EPSS: 1%CPEs: 7EXPL: 0CVE-1999-0160
https://notcve.org/view.php?id=CVE-1999-0160
01 Oct 1997 — Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections. • http://www.osvdb.org/1099 •