CVSS: 10.0EPSS: 57%CPEs: 165EXPL: 2CVE-2008-0960 – SNMPv3 - HMAC Validation error Remote Authentication Bypass
https://notcve.org/view.php?id=CVE-2008-0960
10 Jun 2008 — SNMPv3 HMAC verification in (1) Net-SNMP 5.2.x before 5.2.4.1, 5.3.x before 5.3.2.1, and 5.4.x before 5.4.1.1; (2) UCD-SNMP; (3) eCos; (4) Juniper Session and Resource Control (SRC) C-series 1.0.0 through 2.0.0; (5) NetApp (aka Network Appliance) Data ONTAP 7.3RC1 and 7.3RC2; (6) SNMP Research before 16.2; (7) multiple Cisco IOS, CatOS, ACE, and Nexus products; (8) Ingate Firewall 3.1.0 and later and SIParator 3.1.0 and later; (9) HP OpenView SNMP Emanate Master Agent 15.x; and possibly other products relie... • https://www.exploit-db.com/exploits/5790 • CWE-287: Improper Authentication •
CVSS: 7.5EPSS: 1%CPEs: 22EXPL: 0CVE-2007-5651
https://notcve.org/view.php?id=CVE-2007-5651
23 Oct 2007 — Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet. Vulnerabilidad no especificada en la implementación Extensible Authentication Protocol (EAP) en Cisco IOS 12.... • http://secunia.com/advisories/27329 •
CVSS: 7.5EPSS: 0%CPEs: 19EXPL: 1CVE-2007-5134
https://notcve.org/view.php?id=CVE-2007-5134
27 Sep 2007 — Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended. Las series de dispositivos Cisco Catalyst 6500 y Cisco 7600 utilizan direcciones IP 127/8 para el Canal Ethernet Fuera de Banda (EOBC, Ethernet Out-of-Band Channel), lo cual permite a atacantes remotos enviar paquetes a una interfaz para la cual la exposición de la... • http://seclists.org/fulldisclosure/2007/Sep/0573.html • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 167EXPL: 1CVE-2005-4258
https://notcve.org/view.php?id=CVE-2005-4258
15 Dec 2005 — Unspecified Cisco Catalyst Switches allow remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LanD). NOTE: the provenance of this issue is unknown; the details are obtained solely from the BID. Conmutadores Cisco Catalyst no especificados permiten a atacantes remotos causar una denegación de servicio (caída de dispositivo) mediante un paquete IP con IPs y puertos de origen y destino iguales y con la ... • http://www.securityfocus.com/bid/15864 •
CVSS: 7.5EPSS: 0%CPEs: 294EXPL: 0CVE-2004-0551
https://notcve.org/view.php?id=CVE-2004-0551
15 Jun 2004 — Cisco CatOS 5.x before 5.5(20) through 8.x before 8.2(2) and 8.3(2)GLX, as used in Catalyst switches, allows remote attackers to cause a denial of service (system crash and reload) by sending invalid packets instead of the final ACK portion of the three-way handshake to the (1) Telnet, (2) HTTP, or (3) SSH services, aka "TCP-ACK DoS attack." Cisco CatOS anteriores a 5.5(20) a 8.x anteriores a 8.2(2) y 8.3(3) GLX, usados en conmutadores Catalyst, permiten a atacantes remotos causar una denegación de servicio... • http://www.cisco.com/warp/public/707/cisco-sa-20040609-catos.shtml •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2003-1001
https://notcve.org/view.php?id=CVE-2003-1001
17 Dec 2003 — Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication. Desbordamiento de búfer en el Módulo de Servicios de Cortafuegos Cisco (FWSM) en dispositivos de la seria Cisco Cayalyst 6500 y 7600 permiten a atacantes remotos causar una denegación de servicio (caída y recarga) mediante una petición HTTP auth para autenticació... • http://www.cisco.com/warp/public/707/cisco-sa-20031215-fwsm.shtml •
CVSS: 7.5EPSS: 0%CPEs: 18EXPL: 0CVE-2003-1002
https://notcve.org/view.php?id=CVE-2003-1002
17 Dec 2003 — Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via an SNMPv3 message when snmp-server is set. El Módulo de Servicios de Cortafuegos Cisco (FWSM) en dispositivos de la seria Cisco Cayalyst 6500 y 7600 permite a atacantes remotos causar una denegación de servicio (caída y recarga) mediante SNMPv3 cuando está establecido snmp-server. • http://www.cisco.com/warp/public/707/cisco-sa-20031215-fwsm.shtml •
CVSS: 9.3EPSS: 0%CPEs: 1EXPL: 0CVE-2003-0216
https://notcve.org/view.php?id=CVE-2003-0216
26 Apr 2003 — Unknown vulnerability in Cisco Catalyst 7.5(1) allows local users to bypass authentication and gain access to the enable mode without a password. Vulnerabilidad desconocida en Cisco Catalyst 7.5 permite a usuarios locales saltarse la autenticación y ganar acceso al modo de activación sin una contraseña. • http://www.cisco.com/warp/public/707/cisco-sa-20030424-catos.shtml. • CWE-287: Improper Authentication •