Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard.
Max CVSS
7.5
EPSS Score
1.03%
Published
2001-02-28
Updated
2017-07-11
Cisco ubr900 series routers that conform to the Data-over-Cable Service Interface Specifications (DOCSIS) standard must ship without SNMP access restrictions, which can allow remote attackers to read and write information to the MIB using arbitrary community strings.
Max CVSS
6.4
EPSS Score
0.50%
Published
2001-12-30
Updated
2008-09-10
RSA BSAFE SSL-J 3.0, 3.0.1 and 3.1, as used in Cisco iCND 2.0, caches session IDs from failed login attempts, which could allow remote attackers to bypass SSL client authentication and gain access to sensitive data by logging in after an initial failure.
Max CVSS
7.5
EPSS Score
0.45%
Published
2001-09-12
Updated
2021-11-08
Cisco IOS Firewall Feature set, aka Context Based Access Control (CBAC) or Cisco Secure Integrated Software, for IOS 11.2P through 12.2T does not properly check the IP protocol type, which could allow remote attackers to bypass access control lists.
Max CVSS
7.5
EPSS Score
0.54%
Published
2001-11-28
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote attackers to bypass the intended access controls.
Max CVSS
7.5
EPSS Score
0.34%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls.
Max CVSS
7.5
EPSS Score
0.34%
Published
2001-12-06
Updated
2008-09-05
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access.
Max CVSS
7.5
EPSS Score
0.47%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions.
Max CVSS
7.5
EPSS Score
0.39%
Published
2001-12-06
Updated
2017-10-10
Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL.
Max CVSS
7.5
EPSS Score
0.48%
Published
2001-12-06
Updated
2017-10-10
Cisco 6400 Access Concentrator Node Route Processor 2 (NRP2) 12.1DC card does not properly disable access when a password has not been set for vtys, which allows remote attackers to obtain access via telnet.
Max CVSS
7.5
EPSS Score
3.55%
Published
2001-10-18
Updated
2017-10-10
Cisco CBOS 2.3.8 and earlier stores the passwords for (1) exec and (2) enable in cleartext in the NVRAM and a configuration file, which could allow unauthorized users to obtain the passwords and gain privileges.
Max CVSS
7.5
EPSS Score
3.43%
Published
2001-10-18
Updated
2017-07-11
Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections.
Max CVSS
7.5
EPSS Score
0.28%
Published
2001-10-18
Updated
2017-10-10
Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intrusion Detection System Module, (3) Dragon Sensor 4.x, (4) Snort before 1.8.1, (5) ISS RealSecure Network Sensor 5.x and 6.x before XPU 3.2, and (6) ISS RealSecure Server Sensor 5.5 and 6.0 for Windows, allow remote attackers to evade detection of HTTP attacks via non-standard "%u" Unicode encoding of ASCII characters in the requested URL.
Max CVSS
7.5
EPSS Score
7.21%
Published
2001-10-30
Updated
2016-10-18
The web management service on Cisco Content Service series 11000 switches (CSS) before WebNS 4.01B29s or WebNS 4.10B17s allows a remote attacker to gain additional privileges by directly requesting the web management URL instead of navigating through the interface.
Max CVSS
7.5
EPSS Score
0.68%
Published
2001-08-14
Updated
2017-10-10
The FTP server on Cisco Content Service 11000 series switches (CSS) before WebNS 4.01B23s and WebNS 4.10B13s allows an attacker who is an FTP user to read and write arbitrary files via GET or PUT commands.
Max CVSS
7.5
EPSS Score
0.25%
Published
2001-08-14
Updated
2017-10-10

CVE-2001-0537

Public exploit
HTTP server for Cisco IOS 11.3 to 12.2 allows attackers to bypass authentication and execute arbitrary commands, when local authorization is being used, by specifying a high access level in the URL.
Max CVSS
9.3
EPSS Score
87.68%
Published
2001-07-21
Updated
2017-10-10
Cisco Aironet 340 Series wireless bridge before 8.55 does not properly disable access to the web interface, which allows remote attackers to modify its configuration.
Max CVSS
7.5
EPSS Score
0.67%
Published
2001-06-27
Updated
2017-10-10
Cisco VPN 3000 series concentrators before 2.5.2(F) allow remote attackers to cause a denial of service via a flood of invalid login requests to (1) the SSL service, or (2) the telnet service, which do not properly disconnect the user after several failed login attempts.
Max CVSS
7.1
EPSS Score
0.65%
Published
2001-06-18
Updated
2017-10-10
Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-06-18
Updated
2017-10-10
Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
Max CVSS
7.5
EPSS Score
0.24%
Published
2001-05-03
Updated
2008-09-05
The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection.
Max CVSS
7.5
EPSS Score
0.45%
Published
2001-02-16
Updated
2017-10-10
Memory leak in Cisco Catalyst 4000, 5000, and 6000 series switches allows remote attackers to cause a denial of service via a series of failed telnet authentication attempts.
Max CVSS
7.8
EPSS Score
0.76%
Published
2001-02-16
Updated
2017-10-10
22 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!