CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Cisco : Security Vulnerabilities Published In 2001

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2004-1776 2001-02-28 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.
2 CVE-2001-1434 2001-02-28 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco IOS 12.0(5)XU through 12.1(2) allows remote attackers to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created.
3 CVE-2001-1210 2001-12-30 2008-09-10
6.4
None Remote Low Not required Partial Partial None
Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read and write information to the MIB using arbitrary community strings.
4 CVE-2001-1183 DoS 2001-07-12 2008-09-05
5.0
None Remote Low Not required None None Partial
PPTP implementation in Cisco IOS 12.1 and 12.2 allows remote attackers to cause a denial of service (crash) via a malformed packet.
5 CVE-2001-1105 Bypass 2001-09-12 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
RSA BSAFE SSL-J 3.0, 3.0.1 and 3.1, as used in Cisco iCND 2.0, caches session IDs from failed login attempts, which could allow remote attackers to bypass SSL client authentication and gain access to sensitive data by logging in after an initial failure.
6 CVE-2001-1098 2001-10-10 2008-09-05
2.1
None Local Low Not required Partial None None
Cisco PIX firewall manager (PFM) 4.3(2)g logs the enable password in plaintext in the pfm.log file, which could allow local users to obtain the password by reading the file.
7 CVE-2001-1097 DoS 2001-07-24 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco routers and switches running IOS 12.0 through 12.2.1 allows a remote attacker to cause a denial of service via a flood of UDP packets.
8 CVE-2001-1071 DoS 2001-10-09 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco IOS 12.2 and earlier running Cisco Discovery Protocol (CDP) allows remote attackers to cause a denial of service (memory consumption) via a flood of CDP neighbor announcements.
9 CVE-2001-1065 2001-08-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Web-based configuration utility in Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap binds itself to port 80 even when web-based configuration services are disabled, which could leave the router open to attack.
10 CVE-2001-1064 DoS 2001-08-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco 600 series routers running CBOS 2.0.1 through 2.4.2ap allows remote attackers to cause a denial of service via multiple connections to the router on the (1) HTTP or (2) telnet service, which causes the router to become unresponsive and stop forwarding packets.
11 CVE-2001-1038 DoS 2001-07-11 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco SN 5420 Storage Router 1.1(3) and earlier allows remote attackers to cause a denial of service (reboot) via a series of connections to TCP port 8023.
12 CVE-2001-1037 Exec Code 2001-01-08 2008-09-05
4.6
None Local Low Not required Partial Partial Partial
Cisco SN 5420 Storage Router 1.1(3) and earlier allows local users to access a developer's shell without a password and execute certain restricted commands without being logged.
13 CVE-2001-0929 Bypass 2001-11-28 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.
14 CVE-2001-0895 DoS 2001-11-15 2008-09-05
5.0
None Remote Low Not required None None Partial
Multiple Cisco networking products allow remote attackers to cause a denial of service on the local network via a series of ARP packets sent to the router's interface that contains a different MAC address for the router, which eventually causes the router to overwrite the MAC address in its ARP table.
15 CVE-2001-0867 Bypass 2001-12-06 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote attackers to bypass the intended access controls.
16 CVE-2001-0866 Bypass 2001-12-06 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls.
17 CVE-2001-0865 2001-12-06 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.
18 CVE-2001-0864 Bypass 2001-12-06 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
19 CVE-2001-0863 DoS 2001-12-06 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not handle the "fragment" keyword in a compiled ACL (Turbo ACL) for packets that are sent to the router, which allows remote attackers to cause a denial of service via a flood of fragments.
20 CVE-2001-0862 Bypass 2001-12-06 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL.
21 CVE-2001-0861 DoS 2001-12-06 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 and earlier allows remote attackers to cause a denial of service (CPU consumption) by flooding the router with traffic that generates a large number of ICMP Unreachable replies.
22 CVE-2001-0783 2001-10-18 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco TFTP server 1.1 allows remote attackers to read arbitrary files via a ..(dot dot) attack in the GET command.
23 CVE-2001-0757 2001-10-18 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet.
24 CVE-2001-0754 DoS 2001-10-18 2013-09-08
5.0
None Remote Low Not required None None Partial
Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via a series of large ICMP ECHO REPLY (ping) packets, which cause it to enter ROMMON mode and stop forwarding packets.
25 CVE-2001-0753 +Priv 2001-10-18 2008-09-10
7.5
None Remote Low Not required Partial Partial Partial
Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.
26 CVE-2001-0752 DoS 2001-10-18 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco CBOS 2.3.8 and earlier allows remote attackers to cause a denial of service via an ICMP ECHO REQUEST (ping) with the IP Record Route option set.
27 CVE-2001-0751 2001-10-18 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections.
28 CVE-2001-0750 DoS 2001-10-18 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco IOS 12.1(2)T, 12.1(3)T allow remote attackers to cause a denial of service (reload) via a connection to TCP ports 3100-3999, 5100-5999, 7100-7999 and 10100-10999.
29 CVE-2001-0741 DoS 2001-10-18 2008-09-05
2.1
None Local Low Not required None None Partial
Cisco Hot Standby Routing Protocol (HSRP) allows local attackers to cause a denial of service by spoofing HSRP packets.
30 CVE-2001-0711 DoS 2001-08-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco IOS 11.x and 12.0 with ATM support allows attackers to cause a denial of service via the undocumented Interim Local Management Interface (ILMI) SNMP community string.
31 CVE-2001-0669 2001-10-30 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
32 CVE-2001-0650 2001-09-20 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco devices IOS 12.0 and earlier allow a remote attacker to cause a crash, or bad route updates, via malformed BGP updates with unrecognized transitive attribute.
33 CVE-2001-0622 +Priv 2001-08-14 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead of navigating through the interface.
34 CVE-2001-0621 2001-08-14 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.
35 CVE-2001-0566 DoS 2001-08-14 2008-09-10
5.0
None Remote Low Not required None None Partial
Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled.
36 CVE-2001-0537 287 Exec Code Bypass 2001-07-21 2008-09-05
9.3
Admin Remote Medium Not required Complete Complete Complete
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
37 CVE-2001-0455 2001-06-27 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web interface, which allows remote attackers to modify its configuration.
38 CVE-2001-0444 +Info 2001-07-02 2008-09-05
2.1
None Local Low Not required Partial None None
Cisco CBOS 2.3.0.053 sends output of the "sh nat" (aka "show nat") command to the terminal of the next user who attempts to connect to the router via telnet, which could allow that user to obtain sensitive information.
39 CVE-2001-0429 DoS 2001-07-02 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco Catalyst 5000 series switches 6.1(2) and earlier will forward an 802.1x frame on a Spanning Tree Protocol (STP) blocked port, which causes a network storm and a denial of service.
40 CVE-2001-0428 DoS 2001-07-02 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via an IP packet with an invalid IP option.
41 CVE-2001-0427 20 DoS 2001-06-18 2008-09-05
7.1
None Remote Medium Not required None None Complete
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.
42 CVE-2001-0412 +Priv 2001-06-18 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode.
43 CVE-2001-0375 DoS 2001-06-18 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco PIX Firewall 515 and 520 with 5.1.4 OS running aaa authentication to a TACACS+ server allows remote attackers to cause a denial of service via a large number of authentication requests.
44 CVE-2001-0288 2001-05-03 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
45 CVE-2001-0163 2001-01-01 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
46 CVE-2001-0161 2001-01-01 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
47 CVE-2001-0080 DoS 2001-02-12 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco Catalyst 6000, 5000, or 4000 switches allow remote attackers to cause a denial of service by connecting to the SSH service with a non-SSH client, which generates a protocol mismatch error.
48 CVE-2001-0058 DoS 2001-02-16 2008-09-05
5.0
None Remote Low Not required None None Partial
The Web interface to Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service via a URL that does not end in a space character.
49 CVE-2001-0057 DoS 2001-02-16 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco 600 routers running CBOS 2.4.1 and earlier allow remote attackers to cause a denial of service via a large ICMP echo (ping) packet.
50 CVE-2001-0056 2001-02-16 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection.
Total number of vulnerabilities : 55   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.