Note:
This project will be discontinued after December 13, 2021. [more]
Product:
Ios
(Cisco)| Repositories |
Unknown: This might be proprietary software. |
| #Vulnerabilities | 609 |
| Date | Id | Summary | Products | Score | Patch | Annotated |
|---|---|---|---|---|---|---|
| 2013-07-19 | CVE-2013-3436 | The default configuration of the Group Encrypted Transport VPN (GET VPN) feature on Cisco IOS uses an improper mechanism for enabling Group Domain of Interpretation (GDOI) traffic flow, which allows remote attackers to bypass the encryption policy via certain uses of UDP port 848, aka Bug ID CSCui07698. | Ios | N/A | ||
| 2013-05-08 | CVE-2013-1241 | The ISM module in Cisco IOS on ISR G2 routers does not properly handle authentication-header packets, which allows remote authenticated users to cause a denial of service (module reload) via a series of malformed packets, aka Bug ID CSCub92025. | 1921_integrated_services_router, 1941_integrated_services_router, 1941w_integrated_services_router, 2901_integrated_services_router, 2911_integrated_services_router, 2921_integrated_services_router, 2951_integrated_services_router, 3925_integrated_services_router, 3925e_integrated_services_router, 3945_integrated_services_router, 3945e_integrated_services_router, 861_integrated_services_router, 867_integrated_services_router, 880_3g_integrated_services_router, 881_integrated_services_router, 886_integrated_services_router, 886va\-W_integrated_services_router, 886va_integrated_services_router, 887_integrated_services_router, 887v_integrated_services_router, 887va\-W_integrated_services_router, 887va_integrated_services_router, 888_integrated_services_router, 891_integrated_services_router, 892_integrated_services_router, C881w_integrated_services_router, Ios | N/A | ||
| 2013-04-24 | CVE-2013-1217 | The generic input/output control implementation in Cisco IOS does not properly manage buffers, which allows remote authenticated users to cause a denial of service (device reload) by sending many SNMP requests at the same time, aka Bug ID CSCub41105. | Ios | N/A | ||
| 2013-03-28 | CVE-2013-1148 | The General Responder implementation in the IP Service Level Agreement (SLA) feature in Cisco IOS 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S allows remote attackers to cause a denial of service (device reload) via crafted (1) IPv4 or (2) IPv6 IP SLA packets on UDP port 1167, aka Bug ID CSCuc72594. | Ios, Ios_xe | N/A | ||
| 2013-03-28 | CVE-2013-1147 | The Protocol Translation (PT) functionality in Cisco IOS 12.3 through 12.4 and 15.0 through 15.3, when one-step port-23 translation or a Telnet-to-PAD ruleset is configured, does not properly validate TCP connection information, which allows remote attackers to cause a denial of service (device reload) via an attempted connection to a PT resource, aka Bug ID CSCtz35999. | Ios | N/A | ||
| 2013-03-28 | CVE-2013-1146 | The Smart Install client functionality in Cisco IOS 12.2 and 15.0 through 15.3 on Catalyst switches allows remote attackers to cause a denial of service (device reload) via crafted image list parameters in Smart Install packets, aka Bug ID CSCub55790. | Ios | N/A | ||
| 2013-03-28 | CVE-2013-1145 | Memory leak in Cisco IOS 12.2, 12.4, 15.0, and 15.1, when Zone-Based Policy Firewall SIP application layer gateway inspection is enabled, allows remote attackers to cause a denial of service (memory consumption or device reload) via malformed SIP messages, aka Bug ID CSCtl99174. | Ios | N/A | ||
| 2013-03-28 | CVE-2013-1144 | Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote attackers to cause a denial of service (memory consumption) via unspecified (1) IPv4 or (2) IPv6 IKE packets, aka Bug ID CSCth81055. | Ios | N/A | ||
| 2013-03-28 | CVE-2013-1143 | The RSVP protocol implementation in Cisco IOS 12.2 and 15.0 through 15.2 and IOS XE 3.1.xS through 3.4.xS before 3.4.5S and 3.5.xS through 3.7.xS before 3.7.2S, when MPLS-TE is enabled, allows remote attackers to cause a denial of service (incorrect memory access and device reload) via a traffic engineering PATH message in an RSVP packet, aka Bug ID CSCtg39957. | Ios, Ios_xe | N/A | ||
| 2013-05-13 | CVE-2013-1136 | The crypto engine process in Cisco IOS on Aggregation Services Router (ASR) Route Processor 2 does not properly manage memory, which allows local users to cause a denial of service (route processor crash) by creating multiple tunnels and then examining encryption statistics, aka Bug ID CSCuc52193. | Ios | N/A |