Vulnerabilities > Cisco
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2000-12-11 | CVE-2000-1056 | Unspecified vulnerability in Cisco Secure Access Control Server 2.1/2.3(3)/2.4(2) CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords. | 7.5 |
2000-12-11 | CVE-2000-1055 | Unspecified vulnerability in Cisco Secure Access Control Server 2.1/2.3(3)/2.4(2) Buffer overflow in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large TACACS+ packet. | 10.0 |
2000-12-11 | CVE-2000-1054 | Unspecified vulnerability in Cisco Secure Access Control Server 2.1/2.3(3)/2.4(2) Buffer overflow in CSAdmin module in CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a large packet. | 10.0 |
2000-12-11 | CVE-2000-1027 | Unspecified vulnerability in Cisco PIX Firewall Software 5.2 Cisco Secure PIX Firewall 5.2(2) allows remote attackers to determine the real IP address of a target FTP server by flooding the server with PASV requests, which includes the real IP address in the response when passive mode is established. | 5.0 |
2000-12-11 | CVE-2000-1022 | Unspecified vulnerability in Cisco PIX Firewall Software The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands. | 7.5 |
2000-10-20 | CVE-2000-0700 | Unspecified vulnerability in Cisco products Cisco Gigabit Switch Routers (GSR) with Fast Ethernet / Gigabit Ethernet cards, from IOS versions 11.2(15)GS1A up to 11.2(19)GS0.2 and some versions of 12.0, do not properly handle line card failures, which allows remote attackers to bypass ACLs or force the interface to stop forwarding packets. | 5.0 |
2000-05-30 | CVE-2000-0486 | Unspecified vulnerability in Cisco IOS and Tacacs+ Buffer overflow in Cisco TACACS+ tac_plus server allows remote attackers to cause a denial of service via a malformed packet with a long length field. | 5.0 |
2000-04-26 | CVE-2000-0380 | Improper Input Validation vulnerability in Cisco IOS The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string. | 7.1 |
2000-04-20 | CVE-2000-0268 | Unspecified vulnerability in Cisco products Cisco IOS 11.x and 12.x allows remote attackers to cause a denial of service by sending the ENVIRON option to the Telnet daemon before it is ready to accept it, which causes the system to reboot. | 5.0 |
2000-04-20 | CVE-2000-0267 | Unspecified vulnerability in Cisco Catos 5.4(1) Cisco Catalyst 5.4.x allows a user to gain access to the "enable" mode without a password. | 4.6 |