Cisco : Security Vulnerabilities, CVEs, CVSS score between 1 and 5.99

Land IP denial of service.

Cisco IOS 12.0 and other versions can be crashed by malicious UDP packets to the syslog port.

Cisco PIX firewall and CBAC IP fragmentation attack results in a denial of service.

Cisco PIX firewall manager (PFM) on Windows NT allows attackers to connect to port 8080 on the PFM server and retrieve any file whose name and location is known.

Attackers can crash a Cisco IOS router or device, provided they can get to an interactive prompt (such as a login). This applies to some IOS 9.x, 10.x, and 11.x releases.

The "established" keyword in some Cisco IOS software allowed an attacker to bypass filtering.

Denial of service in Cisco IOS web server allows attackers to reboot the router using a long URL.

Buffer overflow in Cisco 7xx routers through the telnet service.

Vulnerability in Cisco 7xx series routers allows a remote attacker to cause a system reload via a TCP connection to the router's TELNET port.

Cisco Catalyst LAN switches running Catalyst 5000 supervisor software allows remote attackers to perform a denial of service by forcing the supervisor module to reload.

In Cisco routers under some versions of IOS 12.0 running NAT, some packets may not be filtered by input access list filters.

An attacker can identify a CISCO device by sending a SYN packet to port 1999, which is for the Cisco Discovery Protocol (CDP).

ICMP information such as (1) netmask and (2) timestamp is allowed from arbitrary hosts.

Denial of service in Cisco routers running NAT via a PORT command from an FTP client to a Telnet port.

Cisco Cache Engine allows an attacker to replace content in the cache.

The web administration interface for Cisco Cache Engine allows remote attackers to view performance statistics.

Cisco Cache Engine allows a remote attacker to gain access via a null username and password.

Cisco Resource Manager (CRM) 1.0 and 1.1 creates world-readable log files and temporary files, which may expose sensitive information, to local users such as user IDs, passwords and SNMP community strings.

Cisco Resource Manager (CRM) 1.1 and earlier creates certain files with insecure permissions that allow local users to obtain sensitive configuration information including usernames, passwords, and SNMP community strings, from (1) swim_swd.log, (2) swim_debug.log, (3) dbi_debug.log, and (4) temporary files whose names begin with "DPR_".

Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password.

Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot.

The on-line help system options in Cisco routers allows non-privileged users without "enabled" access to obtain sensitive information via the show command.

Classic Cisco IOS 9.1 and later allows attackers with access to the login prompt to obtain portions of the command history of previous users, which may allow the attacker to access sensitive data.

Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field.

Cisco Secure PIX Firewall does not properly identify forged TCP Reset (RST) packets, which allows remote attackers to force the firewall to close legitimate connections.