3 results (0.022 seconds)

CVSS: 5.0EPSS: 1%CPEs: 17EXPL: 0

Cisco IOS 2.2(18)EW, 12.2(18)EWA, 12.2(14)SZ, 12.2(18)S, 12.2(18)SE, 12.2(18)SV, 12.2(18)SW, and other versions without the "no service dhcp" command, keep undeliverable DHCP packets in the queue instead of dropping them, which allows remote attackers to cause a denial of service (dropped traffic) via multiple undeliverable DHCP packets that exceed the input queue size. • http://www.ciac.org/ciac/bulletins/p-034.shtml http://www.cisco.com/warp/public/707/cisco-sa-20041110-dhcp.shtml http://www.kb.cert.org/vuls/id/630104 http://www.us-cert.gov/cas/techalerts/TA04-316A.html https://exchange.xforce.ibmcloud.com/vulnerabilities/18021 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5632 •

CVSS: 2.1EPSS: 0%CPEs: 54EXPL: 1

The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command. • http://www.securityfocus.com/bid/1161 http://www.securityfocus.com/templates/archive.pike?list=1&msg=20000502222246.28423.qmail%40securityfocus.com •

CVSS: 5.0EPSS: 0%CPEs: 26EXPL: 0

Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. • http://www.cisco.com/warp/public/707/iostelnetopt-pub.shtml http://www.osvdb.org/1289 http://www.securityfocus.com/bid/1123 •