Vulnerabilities > Cisco > IOS > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-09-27 | CVE-2012-4620 | Resource Management Errors vulnerability in Cisco 10008 Router and IOS Cisco IOS 12.2 and 15.0 through 15.2 on Cisco 10000 series routers, when a tunnel interface exists, allows remote attackers to cause a denial of service (interface queue wedge) via tunneled (1) GRE/IP, (2) IPIP, or (3) IPv6 in IPv4 packets, aka Bug ID CSCts66808. | 7.8 |
| 2012-09-27 | CVE-2012-4619 | Resource Management Errors vulnerability in Cisco IOS The NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtr46123. | 7.8 |
| 2012-09-27 | CVE-2012-4618 | Resource Management Errors vulnerability in Cisco IOS The SIP ALG feature in the NAT implementation in Cisco IOS 12.2, 12.4, and 15.0 through 15.2 allows remote attackers to cause a denial of service (device reload) via transit IP packets, aka Bug ID CSCtn76183. | 7.8 |
| 2012-09-27 | CVE-2012-4617 | Improper Input Validation vulnerability in Cisco Ios, IOS XE and IOS XR The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a denial of service (multiple connection resets) by leveraging a peer relationship and sending a malformed attribute, aka Bug IDs CSCtt35379, CSCty58300, CSCtz63248, and CSCtz62914. | 7.1 |
| 2012-09-27 | CVE-2012-3950 | Resource Management Errors vulnerability in Cisco IOS The Intrusion Prevention System (IPS) feature in Cisco IOS 12.3 through 12.4 and 15.0 through 15.2, in certain configurations of enabled categories and missing signatures, allows remote attackers to cause a denial of service (device reload) via DNS packets, aka Bug ID CSCtw55976. | 7.1 |
| 2012-09-27 | CVE-2012-3949 | Improper Input Validation vulnerability in Cisco Ios, IOS XE and Unified Communications Manager The SIP implementation in Cisco Unified Communications Manager (CUCM) 6.x and 7.x before 7.1(5b)su5, 8.x before 8.5(1)su4, and 8.6 before 8.6(2a)su1; Cisco IOS 12.2 through 12.4 and 15.0 through 15.2; and Cisco IOS XE 3.3.xSG before 3.3.1SG, 3.4.xS, and 3.5.xS allows remote attackers to cause a denial of service (service crash or device reload) via a crafted SIP message containing an SDP session description, aka Bug IDs CSCtw66721, CSCtj33003, and CSCtw84664. | 7.8 |
| 2012-09-16 | CVE-2012-3079 | Resource Management Errors vulnerability in Cisco IOS 12.2 Cisco IOS 12.2 allows remote attackers to cause a denial of service (CPU consumption) by establishing many IPv6 neighbors, aka Bug ID CSCtn78957. | 7.8 |
| 2012-08-06 | CVE-2012-1350 | Unspecified vulnerability in Cisco products Cisco IOS 12.3 and 12.4 on Aironet access points allows remote attackers to cause a denial of service (radio-interface input-queue hang) via IAPP 0x3281 packets, aka Bug ID CSCtc12426. | 7.8 |
| 2012-05-03 | CVE-2012-1324 | Race Condition vulnerability in Cisco IOS 15.1/15.2 Race condition in the Zone-Based Firewall in Cisco IOS 15.1 and 15.2, when IPS policies are configured, allows remote attackers to cause a denial of service (device crash) by sending IPv6 packets, aka Bug ID CSCtk53534. | 7.1 |
| 2012-05-02 | CVE-2011-2578 | Resource Management Errors vulnerability in Cisco IOS 15.1/15.2 Memory leak in Cisco IOS 15.1 and 15.2 allows remote attackers to cause a denial of service (memory consumption) via malformed SIP packets on a NAT interface, aka Bug ID CSCts12366. | 7.8 |