VYPR

Cisco iOS

by Cisco Systems, Inc.

CVEs (949)

  • CVE-2012-5427Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS Unified Border Element (CUBE) in Cisco IOS before 15.3(2)T allows remote authenticated users to cause a denial of service (input queue wedge) via a crafted series of RTCP packets, aka Bug ID CSCuc42518.

  • CVE-2012-5044Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.3(1)T, when media flow-around is not used, allows remote attackers to cause a denial of service (media loops and stack memory corruption) via VoIP traffic, aka Bug ID CSCub45809.

  • CVE-2012-5422Apr 23, 2014
    risk 0.00cvss epss 0.01

    Unspecified vulnerability in Cisco IOS before 15.3(2)T on AS5400 devices allows remote authenticated users to cause a denial of service (spurious errors) via unknown vectors, aka Bug ID CSCub61009.

  • CVE-2012-5037Apr 23, 2014
    risk 0.00cvss epss 0.00

    The ACL implementation in Cisco IOS before 15.1(1)SY on Catalyst 6500 and 7600 devices allows local users to cause a denial of service (device reload) via a "no object-group" command followed by an object-group command, aka Bug ID CSCts16133.

  • CVE-2012-5039Apr 23, 2014
    risk 0.00cvss epss 0.01

    The BGP Router process in Cisco IOS before 12.2(50)SY1 allows remote attackers to cause a denial of service (memory consumption) via vectors involving BGP path attributes, aka Bug ID CSCsw63003.

  • CVE-2012-5036Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 12.2(50)SY1 allows remote authenticated users to cause a denial of service (memory consumption) via a sequence of VTY management sessions (aka exec sessions), aka Bug ID CSCtn43662.

  • CVE-2012-5032Apr 23, 2014
    risk 0.00cvss epss 0.01

    The Flex-VPN load-balancing feature in the ipsec-ikev2 implementation in Cisco IOS before 15.1(1)SY3 does not require authentication, which allows remote attackers to trigger the forwarding of VPN traffic to an attacker-controlled destination, or the discarding of this traffic,…

  • CVE-2012-5017Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.1(1)SY1 allows remote authenticated users to cause a denial of service (device reload) by establishing a VPN session and then sending malformed IKEv2 packets, aka Bug ID CSCub39268.

  • CVE-2012-4658Apr 23, 2014
    risk 0.00cvss epss 0.01

    The ios-authproxy implementation in Cisco IOS before 15.1(1)SY3 allows remote attackers to cause a denial of service (webauth and HTTP service outage) via vectors that trigger incorrectly terminated HTTP sessions, aka Bug ID CSCtz99447.

  • CVE-2012-5014Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.1(2)SY allows remote authenticated users to cause a denial of service (device crash) by establishing an SSH session from a client and then placing this client into a (1) slow or (2) idle state, aka Bug ID CSCto87436.

  • CVE-2012-4651Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.3(2)T, when scansafe is enabled, allows remote attackers to cause a denial of service (latency) via SYN packets that are not accompanied by SYN-ACK packets from the Scan Safe Tower, aka Bug ID CSCub85451.

  • CVE-2012-4638Apr 23, 2014
    risk 0.00cvss epss 0.00

    Cisco IOS before 15.1(1)SY allows local users to cause a denial of service (device reload) by establishing an outbound SSH session, aka Bug ID CSCto00318.

  • CVE-2012-3918Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.3(1)T on Cisco 2900 devices, when a VWIC2-2MFT-T1/E1 card is configured for TDM/HDLC mode, allows remote attackers to cause a denial of service (serial-interface outage) via certain Frame Relay traffic, aka Bug ID CSCub13317.

  • CVE-2012-3062Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.1(1)SY, when Multicast Listener Discovery (MLD) snooping is enabled, allows remote attackers to cause a denial of service (CPU consumption or device crash) via MLD packets on a network that contains many IPv6 hosts, aka Bug ID CSCtr88193.

  • CVE-2012-1366Apr 23, 2014
    risk 0.00cvss epss 0.01

    Cisco IOS before 15.1(1)SY on ASR 1000 devices, when Multicast Listener Discovery (MLD) tracking is enabled for IPv6, allows remote attackers to cause a denial of service (device reload) via crafted MLD packets, aka Bug ID CSCtz28544.

  • CVE-2012-1317Apr 23, 2014
    risk 0.00cvss epss 0.01

    The multicast implementation in Cisco IOS before 15.1(1)SY allows remote attackers to cause a denial of service (Route Processor crash) by sending packets at a high rate, aka Bug ID CSCts37717.

  • CVE-2012-0360Apr 23, 2014
    risk 0.00cvss epss 0.01

    Memory leak in Cisco IOS before 15.1(1)SY, when IKEv2 debugging is enabled, allows remote attackers to cause a denial of service (memory consumption) via crafted packets, aka Bug ID CSCtn22376.

  • CVE-2014-2143Apr 4, 2014
    risk 0.00cvss epss 0.02

    The IKE implementation in Cisco IOS 15.4(1)T and earlier and IOS XE allows remote attackers to cause a denial of service (security-association drop) via crafted Main Mode packets, aka Bug ID CSCun31021.

  • CVE-2014-2131Mar 29, 2014
    risk 0.00cvss epss 0.01

    The packet driver in Cisco IOS allows remote attackers to cause a denial of service (device reload) via a series of (1) Virtual Switching Systems (VSS) or (2) Bidirectional Forwarding Detection (BFD) packets, aka Bug IDs CSCug41049 and CSCue61890.

  • CVE-2014-2113Mar 27, 2014
    risk 0.00cvss epss 0.02

    Cisco IOS 15.1 through 15.3 and IOS XE 3.3 and 3.5 before 3.5.2E; 3.7 before 3.7.5S; and 3.8, 3.9, and 3.10 before 3.10.2S allow remote attackers to cause a denial of service (I/O memory consumption and device reload) via a malformed IPv6 packet, aka Bug ID CSCui59540.

Page 33 of 48