CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register   Reset Password   Activate Account
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Cisco : Security Vulnerabilities Published In 2002

Press ESC to close
# CVE ID CWE ID # of Exploits Vulnerability Type(s) Publish Date Update Date Score Gained Access Level Access Complexity Authentication Conf. Integ. Avail.
1 CVE-2002-2379 310 DoS 2002-12-31 2008-09-05
7.8
None Remote Low Not required None None Complete
** DISPUTED ** Cisco AS5350 IOS 12.2(11)T with access control lists (ACLs) applied and possibly with ssh running allows remote attackers to cause a denial of service (crash) via a port scan, possibly due to an ssh bug. NOTE: this issue could not be reproduced by the vendor.
2 CVE-2002-2316 +Info 2002-12-31 2008-09-05
5.0
None Remote Low Not required None Partial None
Cisco Catalyst 4000 series switches running CatOS 5.5.5, 6.3.5, and 7.1.2 do not always learn MAC addresses from a single initial packet, which causes unicast traffic to be broadcast across the switch and allows remote attackers to obtain sensitive network information by sniffing.
3 CVE-2002-2315 DoS 2002-12-31 2008-09-05
7.8
None Remote Low Not required None None Complete
Cisco IOS 11.2.x and 12.0.x does not limit the size of its redirect table, which allows remote attackers to cause a denial of service (memory consumption) via spoofed ICMP redirect packets to the router.
4 CVE-2002-2239 20 DoS 2002-12-31 2008-09-05
7.8
None Remote Low Not required None None Complete
The Cisco Optical Service Module (OSM) for the Catalyst 6500 and 7600 series running Cisco IOS 12.1(8)E through 12.1(13.4)E allows remote attackers to cause a denial of service (hang) via a malformed packet.
5 CVE-2002-2208 DoS 2002-12-31 2008-09-05
7.8
None Remote Low Not required None None Complete
Extended Interior Gateway Routing Protocol (EIGRP), as implemented in Cisco IOS 11.3 through 12.2 and other products, allows remote attackers to cause a denial of service (flood) by sending a large number of spoofed EIGRP neighbor announcements, which results in an ARP storm on the local network.
6 CVE-2002-2140 DoS Overflow 2002-12-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Buffer overflow in Cisco PIX Firewall 5.2.x to 5.2.8, 6.0.x to 6.0.3, 6.1.x to 6.1.3, and 6.2.x to 6.2.1 allows remote attackers to cause a denial of service via HTTP traffic authentication using (1) TACACS+ or (2) RADIUS.
7 CVE-2002-2139 2002-12-31 2008-09-05
6.4
None Remote Low Not required Partial Partial None
Cisco PIX Firewall 6.0.3 and earlier, and 6.1.x to 6.1.3, do not delete the duplicate ISAKMP SAs for a user's VPN session, which allows local users to hijack a session via a man-in-the-middle attack.
8 CVE-2002-2053 DoS 2002-12-31 2008-09-05
5.0
None Remote Low Not required None None Partial
The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the same IP address as the interface on which HSRP is running, which causes a loop.
9 CVE-2002-2052 DoS 2002-12-31 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scanning a network of hosts for a single open port through the router. NOTE: the vendor could not reproduce this issue, saying that the original reporter was using an interim release of the software.
10 CVE-2002-2037 2002-12-31 2008-09-05
5.0
None Remote Low Not required None Partial None
The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.
11 CVE-2002-1768 DoS 2002-12-31 2008-09-10
5.0
None Remote Low Not required None None Partial
Cisco IOS 11.1 through 12.2, when HSRP support is not enabled, allows remote attackers to cause a denial of service (CPU consumption) via randomly sized UDP packets to the Hot Standby Routing Protocol (HSRP) port 1985.
12 CVE-2002-1706 2002-12-31 2008-09-05
5.0
None Remote Low Not required None Partial None
Cisco IOS software 11.3 through 12.2 running on Cisco uBR7200 and uBR7100 series Universal Broadband Routers allows remote attackers to modify Data Over Cable Service Interface Specification (DOCSIS) settings via a DOCSIS file without a Message Integrity Check (MIC) signature, which is approved by the router.
13 CVE-2002-1597 DoS 2002-01-09 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco SN 5420 Storage Router 1.1(5) and earlier allows remote attackers to cause a denial of service (halt) via a fragmented packet to the Gigabit interface.
14 CVE-2002-1596 DoS 2002-01-09 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco SN 5420 Storage Router 1.1(5) and earlier allows remote attackers to cause a denial of service (router crash) via an HTTP request with large headers.
15 CVE-2002-1595 2002-01-09 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco SN 5420 Storage Router 1.1(5) and earlier allows attackers to read configuration files without authorization.
16 CVE-2002-1447 Overflow +Priv 2002-05-28 2008-09-05
7.2
Admin Local Low Not required Complete Complete Complete
Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative privileges via a long profile name in a connect argument.
17 CVE-2002-1360 20 DoS Exec Code 2002-12-23 2009-03-04
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple SSH2 servers and clients do not properly handle strings with null characters in them when the string length is specified by a length field, which could allow remote attackers to cause a denial of service or possibly execute arbitrary code due to interactions with the use of null-terminated strings as implemented using languages such as C, as demonstrated by the SSHredder SSH protocol test suite.
18 CVE-2002-1359 20 DoS Exec Code Overflow 2002-12-23 2009-03-04
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code via buffer overflow attacks, as demonstrated by the SSHredder SSH protocol test suite.
19 CVE-2002-1358 20 DoS Exec Code 2002-12-23 2009-03-04
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple SSH2 servers and clients do not properly handle lists with empty elements or strings, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
20 CVE-2002-1357 119 DoS Exec Code Overflow 2002-12-23 2009-03-04
10.0
Admin Remote Low Not required Complete Complete Complete
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote attackers to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
21 CVE-2002-1222 119 DoS Overflow 2002-10-28 2008-09-10
7.1
None Remote Medium Not required None None Complete
Buffer overflow in the embedded HTTP server for Cisco Catalyst switches running CatOS 5.4 through 7.3 allows remote attackers to cause a denial of service (reset) via a long HTTP request.
22 CVE-2002-1190 2002-10-28 2008-09-10
7.5
User Remote Low Not required Partial Partial Partial
Cisco Unity 2.x and 3.x uses well-known default user accounts, which could allow remote attackers to gain access and place arbitrary calls.
23 CVE-2002-1189 2002-10-11 2008-09-10
4.6
User Local Low Not required Partial Partial Partial
The default configuration of Cisco Unity 2.x and 3.x does not block international operator calls in the predefined restriction tables, which could allow authenticated users to place international calls using call forwarding.
24 CVE-2002-1108 2002-10-04 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.6(Rel), when configured with all tunnel mode, can be forced into acknowledging a TCP packet from outside the tunnel.
25 CVE-2002-1107 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.2B, does not generate sufficiently random numbers, which may make it vulnerable to certain attacks such as spoofing.
26 CVE-2002-1106 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.1C, does not properly verify that certificate DN fields match those of the certificate from the VPN Concentrator, which allows remote attackers to conduct man-in-the-middle attacks.
27 CVE-2002-1105 2002-10-04 2008-09-05
4.6
User Local Low Not required Partial Partial Partial
Cisco Virtual Private Network (VPN) Client software 2.x.x, and 3.x before 3.5.1C, allows local users to use a utility program to obtain the group password.
28 CVE-2002-1104 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco Virtual Private Network (VPN) Client software 2.x.x and 3.x before 3.0.5 allows remote attackers to cause a denial of service (crash) via TCP packets with source and destination ports of 137 (NETBIOS).
29 CVE-2002-1103 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via (1) malformed or (2) large ISAKMP packets.
30 CVE-2002-1102 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
The LAN-to-LAN IPSEC capability for Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.4, allows remote attackers to cause a denial of service via an incoming LAN-to-LAN connection with an existing security association with another device on the remote network, which causes the concentrator to remove the previous connection.
31 CVE-2002-1101 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco VPN 3000 Concentrator 2.2.x, 3.6(Rel), and 3.x before 3.5.5, allows remote attackers to cause a denial of service via a long user name.
32 CVE-2002-1100 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to cause a denial of service (crash) via a long (1) username or (2) password to the HTML login interface.
33 CVE-2002-1099 +Info 2002-10-04 2008-09-05
5.0
None Remote Low Not required Partial None None
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, allows remote attackers to obtain potentially sensitive information without authentication by directly accessing certain HTML pages.
34 CVE-2002-1098 2002-10-04 2008-09-05
7.5
None Remote Low Not required Partial Partial Partial
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.3, adds an "HTTPS on Public Inbound (XML-Auto)(forward/in)" rule but sets the protocol to "ANY" when the XML filter configuration is enabled, which ultimately allows arbitrary traffic to pass through the concentrator.
35 CVE-2002-1097 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.2, allows restricted administrators to obtain certificate passwords that are stored in plaintext in the HTML source code for Certificate Management pages.
36 CVE-2002-1096 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco VPN 3000 Concentrator 2.2.x, and 3.x before 3.5.1, allows restricted administrators to obtain user passwords that are stored in plaintext in HTML source code.
37 CVE-2002-1095 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco VPN 3000 Concentrator before 2.5.2(F), with encryption enabled, allows remote attackers to cause a denial of service (reload) via a Windows-based PPTP client with the "No Encryption" option set.
38 CVE-2002-1094 +Info 2002-10-04 2008-09-05
5.0
None Remote Low Not required Partial None None
Information leaks in Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.5.4 allow remote attackers to obtain potentially sensitive information via the (1) SSH banner, (2) FTP banner, or (3) an incorrect HTTP request.
39 CVE-2002-1093 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
HTML interface for Cisco VPN 3000 Concentrator 2.x.x and 3.x.x before 3.0.3(B) allows remote attackers to cause a denial of service (CPU consumption) via a long URL request.
40 CVE-2002-1092 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cisco VPN 3000 Concentrator 3.6(Rel) and earlier, and 2.x.x, when configured to use internal authentication with group accounts and without any user accounts, allows remote VPN clients to log in using PPTP or IPSEC user authentication.
41 CVE-2002-1024 399 DoS Overflow 2002-10-04 2008-09-05
7.1
None Remote Medium Not required None None Complete
Cisco IOS 12.0 through 12.2, when supporting SSH, allows remote attackers to cause a denial of service (CPU consumption) via a large packet that was designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144).
42 CVE-2002-0954 Exec Code 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
The encryption algorithms for enable and passwd commands on Cisco PIX Firewall can be executed quickly due to a limited number of rounds, which make it easier for an attacker to decrypt the passwords using brute force techniques.
43 CVE-2002-0952 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco ONS15454 optical transport platform running ONS 3.1.0 to 3.2.0 allows remote attackers to cause a denial of service (reset) by sending IP packets with non-zero Type of Service (TOS) bits to the Timing Control Card (TCC) LAN interface.
44 CVE-2002-0938 XSS 2002-10-04 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
Cross-site scripting vulnerability in CiscoSecure ACS 3.0 allows remote attackers to execute arbitrary script or HTML as other web users via the action argument in a link to setup.exe.
45 CVE-2002-0908 Dir. Trav. 2002-10-04 2008-09-05
5.0
None Remote Low Not required Partial None None
Directory traversal vulnerability in the web server for Cisco IDS Device Manager before 3.1.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the HTTPS request.
46 CVE-2002-0886 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.
47 CVE-2002-0882 DoS 2002-10-04 2008-09-05
6.4
None Remote Low Not required Partial None Partial
The web server for Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allows remote attackers to cause a denial of service (reset) and possibly read sensitive memory via a large integer value in (1) the stream ID of the StreamingStatistics script, or (2) the port ID of the PortInformation script.
48 CVE-2002-0881 2002-10-04 2009-04-03
2.1
None Local Low Not required None Partial None
Cisco IP Phone (VoIP) models 7910, 7940, and 7960 use a default administrative password, which allows attackers with physical access to the phone to modify the configuration settings.
49 CVE-2002-0880 DoS 2002-10-04 2008-09-05
5.0
None Remote Low Not required None None Partial
Cisco IP Phone (VoIP) models 7910, 7940, and 7960 allow remote attackers to cause a denial of service (crash) via malformed packets as demonstrated by (1) "jolt", (2) "jolt2", (3) "raped", (4) "hping2", (5) "bloop", (6) "bubonic", (7) "mutant", (8) "trash", and (9) "trash2."
50 CVE-2002-0870 +Priv Bypass 2002-09-05 2008-09-05
7.5
User Remote Low Not required Partial Partial Partial
The original patch for the Cisco Content Service Switch 11000 Series authentication bypass vulnerability (CVE-2001-0622) was incomplete, which still allows remote attackers to gain additional privileges by directly requesting the web management URL instead of navigating through the interface, possibly via a variant of the original attack, as identified by Cisco bug ID CSCdw08549.
Total number of vulnerabilities : 65   Page : 1 (This Page)2
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.