12.4xj

DATE	CVE	VULNERABILITY TITLE	RISK
2007-10-12	CVE-2007-5381	Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS Stack-based buffer overflow in the Line Printer Daemon (LPD) in Cisco IOS before 12.2(18)SXF11, 12.4(16a), and 12.4(2)T6 allow remote attackers to execute arbitrary code by setting a long hostname on the target system, then causing an error message to be printed, as demonstrated by a telnet session to the LPD from a source port other than 515. network cisco CWE-119 critical	9.3
2007-02-01	CVE-2007-0648	Remote Denial Of Service vulnerability in Cisco IOS SIP Packet Handling Cisco IOS after 12.3(14)T, 12.3(8)YC1, 12.3(8)YG, and 12.4, with voice support and without Session Initiated Protocol (SIP) configured, allows remote attackers to cause a denial of service (crash) by sending a crafted packet to port 5060/UDP. network low complexity cisco	7.8