7 results (0.009 seconds)

CVSS: 5.0EPSS: 2%CPEs: 21EXPL: 1

Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory. • https://www.exploit-db.com/exploits/21472 http://www.cisco.com/warp/public/707/CBOS-DoS.shtml http://www.iss.net/security_center/static/9151.php http://www.iss.net/security_center/static/9153.php http://www.securityfocus.com/bid/4813 http://www.securityfocus.com/bid/4814 http://www.securityfocus.com/bid/4815 https://exchange.xforce.ibmcloud.com/vulnerabilities/9152 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of large ICMP ECHO REPLY (ping) packets, which cause it to enter ROMMON mode and stop forwarding packets. Cisco CBOS 2.3.8 y anteriores permiten a atacantes causar una denegación de servicio mediante una serie de paquetes ICMP de petición de eco (ping) grandes, que les hacen entrar en modo ROMMON y dejar de reenviar paquetes • http://www.cisco.com/warp/public/707/CBOS-multiple2-pub.html https://exchange.xforce.ibmcloud.com/vulnerabilities/7299 •

CVSS: 5.0EPSS: 0%CPEs: 1EXPL: 0

Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via an ICMP ECHO REQUEST (ping) with the IP Record Route option set. Cisco CBOS 2.3.8 y anteriores permiten a atacantes remotos causar una denegación de servicio mediante un paquete ICMP de petición de eco (ping) con la opción trazar ruta activada. • http://www.cisco.com/warp/public/707/CBOS-multiple2-pub.html http://www.osvdb.org/5573 https://exchange.xforce.ibmcloud.com/vulnerabilities/7298 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 1

Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections. Conmutadores y routers Cisco corriendo CBOS 2.3.8 usan números iniciales de secuencia TCP (ISN) predecibles, lo que permite a un atacante remoto secuestrar o falsificar conexiones TCP; • https://www.exploit-db.com/exploits/19522 http://www.cisco.com/warp/public/707/CBOS-multiple2-pub.html https://exchange.xforce.ibmcloud.com/vulnerabilities/139 •

CVSS: 7.5EPSS: 3%CPEs: 1EXPL: 0

Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges. • http://www.cisco.com/warp/public/707/CBOS-multiple2-pub.html https://exchange.xforce.ibmcloud.com/vulnerabilities/44544 •