VPN vulnerabilities

Showing 651 - 675 of 675 CVEs

  1. CVE-2001-1434 Published Feb 28, 2001

    Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.

  2. CVE-2000-0984 Published Dec 19, 2000

    The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.

  3. CVE-2000-0700 Published Oct 20, 2000

    Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets.

  4. CVE-2000-0486 Published May 30, 2000

    Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field.

  5. CVE-2000-0345 Published May 3, 2000

    The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.

  6. CVE-2000-0380 Published Apr 26, 2000

    The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.

  7. CVE-2000-0268 Published Apr 20, 2000

    Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.

  8. CVE-1999-1465 Published Dec 31, 1999

    Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.

  9. CVE-1999-1464 Published Dec 31, 1999

    Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.

  10. CVE-1999-1175 Published Dec 31, 1999

    Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.

  11. CVE-1999-1129 Published Sep 1, 1999

    Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.

  12. CVE-1999-0775 Published Jun 10, 1999

    Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.

  13. CVE-1999-0445 Published Apr 1, 1999

    In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.

  14. CVE-1999-0063 Published Jan 11, 1999

    Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.

  15. CVE-1999-0162 Published Sep 1, 1998

    The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.

  16. CVE-1999-0157 Published Aug 18, 1998

    Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.

  17. CVE-1999-0159 Published Aug 12, 1998

    Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.

  18. CVE-1999-0293 Published Jan 1, 1998

    AAA authentication on Cisco systems allows attackers to execute commands without authorization.

  19. CVE-1999-0230 Published Dec 15, 1997

    Buffer overflow in Cisco 7xx routers through the telnet service.

  20. CVE-1999-0016 Published Dec 1, 1997

    Land IP denial of service.

  21. CVE-1999-0160 Published Oct 1, 1997

    Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.

  22. CVE-1999-0524 Published Aug 1, 1997

    ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

  23. CVE-1999-0161 Published Jul 31, 1995

    In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.

  24. CVE-1999-1466 Published Dec 10, 1992

    Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.

  25. CVE-1999-1306 Published Dec 10, 1992

    Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.