VPN vulnerabilities

Showing 401 - 441 of 441 CVEs

  1. CVE-2002-1358 Published Dec 23, 2002

    Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.

  2. CVE-2002-1357 Published Dec 23, 2002

    Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.

  3. CVE-2002-1024 Published Oct 4, 2002

    Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144).

  4. CVE-2002-0813 Published Aug 12, 2002

    Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service (reset) or modify configuration via a long filename.

  5. CVE-2002-0339 Published Jun 25, 2002

    Cisco IOS 11.1CC through 12.2 with Cisco Express Forwarding (CEF) enabled includes portions of previous packets in the padding of a MAC level packet when the MAC packet's length is less than the IP level packet length.

  6. CVE-2001-0929 Published Nov 28, 2001

    Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.

  7. CVE-2001-0750 Published Oct 18, 2001

    Cisco IOS 12.1(2)T, 12.1(3)T allow remote attackers to cause a denial of service (reload) via a connection to TCP ports 3100-3999, 5100-5999, 7100-7999 and 10100-10999.

  8. CVE-2001-1071 Published Oct 9, 2001

    Cisco IOS 12.2 and earlier running Cisco Discovery Protocol (CDP) allows remote attackers to cause a denial of service (memory consumption) via a flood of CDP neighbor announcements.

  9. CVE-2001-0650 Published Sep 20, 2001

    Cisco devices IOS 12.0 and earlier allow a remote attacker to cause a crash, or bad route updates, via malformed BGP updates with unrecognized transitive attribute.

  10. CVE-2001-0711 Published Aug 31, 2001

    Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undocumented Interim Local Management Interface (ILMI) SNMP community string.

  11. CVE-2001-1097 Published Jul 24, 2001

    Cisco routers and switches running IOS 12.0 through 12.2.1 allows a remote attacker to cause a denial of service via a flood of UDP packets.

  12. CVE-2001-0537 Published Jul 21, 2001

    HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.

  13. CVE-2001-1183 Published Jul 12, 2001

    PPTP implementation in Cisco IOS 12.1 and 12.2 allows remote attackers to cause a denial of service (crash) via a malformed packet.

  14. CVE-2001-0288 Published May 3, 2001

    Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.

  15. CVE-2000-0368 Published Mar 12, 2001

    Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

  16. CVE-2004-1776 Published Feb 28, 2001

    Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.

  17. CVE-2001-1434 Published Feb 28, 2001

    Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.

  18. CVE-2000-0984 Published Dec 19, 2000

    The HTTP server in Cisco IOS 12.0 through 12.1 allows local users to cause a denial of service (crash and reload) via a URL containing a "?/" string.

  19. CVE-2000-0700 Published Oct 20, 2000

    Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets.

  20. CVE-2000-0486 Published May 30, 2000

    Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field.

  21. CVE-2000-0345 Published May 3, 2000

    The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.

  22. CVE-2000-0380 Published Apr 26, 2000

    The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string.

  23. CVE-2000-0268 Published Apr 20, 2000

    Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.

  24. CVE-1999-1465 Published Dec 31, 1999

    Vulnerability in Cisco IOS 11.1 through 11.3 with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled input interface to an output interface with a logical subinterface, as described by Cisco bug CSCdk43862.

  25. CVE-1999-1464 Published Dec 31, 1999

    Vulnerability in Cisco IOS 11.1CC and 11.1CT with distributed fast switching (DFS) enabled allows remote attackers to bypass certain access control lists when the router switches traffic from a DFS-enabled interface to an interface that does not have DFS enabled, as described by Cisco bug CSCdk35564.

  26. CVE-1999-1175 Published Dec 31, 1999

    Web Cache Control Protocol (WCCP) in Cisco Cache Engine for Cisco IOS 11.2 and earlier does not use authentication, which allows remote attackers to redirect HTTP traffic to arbitrary hosts via WCCP packets to UDP port 2048.

  27. CVE-1999-1129 Published Sep 1, 1999

    Cisco Catalyst 2900 Virtual LAN (VLAN) switches allow remote attackers to inject 802.1q frames into another VLAN by forging the VLAN identifier in the trunking tag.

  28. CVE-1999-0775 Published Jun 10, 1999

    Cisco Gigabit Switch routers running IOS allow remote attackers to forward unauthorized packets due to improper handling of the "established" keyword in an access list.

  29. CVE-1999-0445 Published Apr 1, 1999

    In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.

  30. CVE-1999-0063 Published Jan 11, 1999

    Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.

  31. CVE-1999-0162 Published Sep 1, 1998

    The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.

  32. CVE-1999-0157 Published Aug 18, 1998

    Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.

  33. CVE-1999-0159 Published Aug 12, 1998

    Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.

  34. CVE-1999-0293 Published Jan 1, 1998

    AAA authentication on Cisco systems allows attackers to execute commands without authorization.

  35. CVE-1999-0230 Published Dec 15, 1997

    Buffer overflow in Cisco 7xx routers through the telnet service.

  36. CVE-1999-0016 Published Dec 1, 1997

    Land IP denial of service.

  37. CVE-1999-0160 Published Oct 1, 1997

    Some classic Cisco IOS devices have a vulnerability in the PPP CHAP authentication to establish unauthorized PPP connections.

  38. CVE-1999-0524 Published Aug 1, 1997

    ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

  39. CVE-1999-0161 Published Jul 31, 1995

    In Cisco IOS 10.3, with the tacacs-ds or tacacs keyword, an extended IP access control list could bypass filtering.

  40. CVE-1999-1466 Published Dec 10, 1992

    Vulnerability in Cisco routers versions 8.2 through 9.1 allows remote attackers to bypass access control lists when extended IP access lists are used on certain interfaces, the IP route cache is enabled, and the access list uses the "established" keyword.

  41. CVE-1999-1306 Published Dec 10, 1992

    Cisco IOS 9.1 and earlier does not properly handle extended IP access lists when the IP route cache is enabled and the "established" keyword is set, which could allow attackers to bypass filters.