CVSS: 9.0EPSS: 0%CPEs: 5EXPL: 0CVE-2009-0622
https://notcve.org/view.php?id=CVE-2009-0622
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8a) allows remote authenticated users to execute arbitrary operating-system commands through a command line interface (CLI). Vulnerabilidad no especificada en Cisco ACE Application Control Engine Module para Catalyst 6500 Switches y 7600 Routers anterior a A2(1.2) y Cisco ACE 4710 Application Control Engine Appliance anterior a A1(8a), permite a usuarios autenticados en remoto ejecutar comandos de su elección del sistema-operativo a través de una interfaz de línea de comandos (CLI). • http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml http://www.securityfocus.com/bid/33900 •
CVSS: 7.8EPSS: 0%CPEs: 6EXPL: 0CVE-2009-0623
https://notcve.org/view.php?id=CVE-2009-0623
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SSH packet. Vulnerabilidad no especificada en "Cisco ACE Application Control Engine Module" para Catalyst 6500 Switches y 7600 Routers anteriores A2(1.3) y Cisco ACE 4710 Application Control Engine Appliance anteriores a A3(2.1) que permite a los atacantes remotos causar una denegación de servicio (reinicio del dispositivo) a través de un paquete SSH manipulado. • http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml http://www.securityfocus.com/bid/33900 •
CVSS: 6.8EPSS: 0%CPEs: 9EXPL: 0CVE-2009-0624
https://notcve.org/view.php?id=CVE-2009-0624
Unspecified vulnerability in the SNMPv2c implementation in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.3) and Cisco ACE 4710 Application Control Engine Appliance before A3(2.1) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv1 packet. Vulnerabilidad no especificada en la implementación SNMPv2c en Cisco ACE Application Control Engine Module para Catalyst 6500 Switches y 7600 Routers anteriores a A2(1.3) y Cisco ACE 4710 Application Control Engine Appliance anteior a A3(2.1); permite a atacantes remotos provocar una denegación de servicio (reinicio del dispositivo) a través de un paquete SNMPv1 manipulado. • http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml http://www.securityfocus.com/bid/33900 http://www.securitytracker.com/id?1021769 •
CVSS: 7.8EPSS: 0%CPEs: 4EXPL: 0CVE-2009-0625
https://notcve.org/view.php?id=CVE-2009-0625
Unspecified vulnerability in Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.2) and Cisco ACE 4710 Application Control Engine Appliance before A1(8.0) allows remote attackers to cause a denial of service (device reload) via a crafted SNMPv3 packet. Vulnerabilidad no especificada en "Cisco ACE Application Control Engine Module" para Switches Catalyst 6500 y routers anteriores A1(v1.2) y Cisco ACE 4710 "Application Control Engine Appliance" anteriores A1(8.0), permite a atacantes remotos provocar una denegación de servicio (recarga de dispositivo) a través de un paquete SNMPv3 manipulada. • http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml http://www.securityfocus.com/bid/33900 http://www.securitytracker.com/id?1021769 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 0%CPEs: 3EXPL: 0CVE-2009-0620
https://notcve.org/view.php?id=CVE-2009-0620
Cisco ACE Application Control Engine Module for Catalyst 6500 Switches and 7600 Routers before A2(1.1) uses default (1) usernames and (2) passwords for (a) the administrator and (b) web management, which makes it easier for remote attackers to perform configuration changes or obtain operating-system access. El módulo Cisco ACE Application Control Engine para los Switches Catalyst 6500 y Routers 7600 en versiones anteriores a la A2 (1.1) utiliza (1) nombres de usuario por defecto y (2) contraseñas por defecto para (a) el administrador y (b) la gestión de la web, lo que facilita a los atacantes remotos realizar cambios de configuración u obtener acceso al sistema operativo. • http://www.cisco.com/en/US/products/products_security_advisory09186a0080a7bc82.shtml http://www.securityfocus.com/bid/33900 • CWE-255: Credentials Management Errors •