Vulnerabilities > Cisco
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-10-23 | CVE-2007-5651 | Products Extensible Authentication Protocol Denial of Service vulnerability in Cisco Catos and IOS Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet. network cisco | 7.1 |
| 2007-10-18 | CVE-2007-5571 | Permissions, Privileges, and Access Controls vulnerability in Cisco Firewall Services Module Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536. | 6.8 |
| 2007-10-18 | CVE-2007-5570 | Improper Input Validation vulnerability in Cisco Firewall Services Module Cisco Firewall Services Module (FWSM) 3.2(1), and 3.1(5) and earlier, allows remote attackers to cause a denial of service (device reload) via a crafted HTTPS request, aka CSCsi77844. | 7.8 |
| 2007-10-18 | CVE-2007-5552 | Numeric Errors vulnerability in Cisco IOS Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. | 9.3 |
| 2007-10-18 | CVE-2007-5551 | Remote Security vulnerability in IOS Off-by-one error in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors that trigger a heap-based buffer overflow. network cisco | 7.1 |
| 2007-10-18 | CVE-2007-5550 | Information Exposure vulnerability in Cisco IOS Unspecified vulnerability in Cisco IOS allows remote attackers to obtain the IOS version via unspecified vectors involving a "common network service", aka PSIRT-1255024833. | 5.0 |
| 2007-10-18 | CVE-2007-5549 | Information Exposure vulnerability in Cisco IOS Unspecified vulnerability in Command EXEC in Cisco IOS allows local users to bypass command restrictions and obtain sensitive information via an unspecified "variation of an IOS command" involving "two different methods", aka CSCsk16129. | 2.1 |
| 2007-10-18 | CVE-2007-5548 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Cisco IOS Multiple stack-based buffer overflows in Command EXEC in Cisco IOS allow local users to gain privileges via unspecified vectors, aka (1) PSIRT-0474975756 and (2) PSIRT-0388256465. | 6.9 |
| 2007-10-18 | CVE-2007-5547 | Cross-Site Scripting vulnerability in Cisco IOS Cross-site scripting (XSS) vulnerability in Cisco IOS allows remote attackers to inject arbitrary web script or HTML, and execute IOS commands, via unspecified vectors, aka PSIRT-2022590358. | 4.3 |
| 2007-10-18 | CVE-2007-5539 | Unspecified vulnerability in Cisco products Unspecified vulnerability in Cisco Unified Intelligent Contact Management Enterprise (ICME), Unified ICM Hosted (ICMH), Unified Contact Center Enterprise (UCCE), Unified Contact Center Hosted (UCCH), and System Unified Contact Center Enterprise (SUCCE) 7.1(5) allows remote authenticated users to gain privileges, and read reports or change the SUCCE configuration, via certain web interfaces, aka CSCsj55686. | 9.0 |