Vulnerabilities > Cisco > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-08-12 | CVE-2002-0813 | Buffer Errors vulnerability in Cisco IOS 11.1/11.2/11.3 Heap-based buffer overflow in the TFTP server capability in Cisco IOS 11.1, 11.2, and 11.3 allows remote attackers to cause a denial of service (reset) or modify configuration via a long filename. | 7.1 |
| 2002-08-12 | CVE-2002-0778 | Unspecified vulnerability in Cisco products The default configuration of the proxy for Cisco Cache Engine and Content Engine allows remote attackers to use HTTPS to make TCP connections to allowed IP addresses while hiding the actual source IP. | 7.5 |
| 2002-05-29 | CVE-2002-0241 | Authentication vulnerability in Cisco Secure Access Control Server 3.0.1 NDSAuth.DLL in Cisco Secure Authentication Control Server (ACS) 3.0.1 does not check the Expired or Disabled state of users in the Novell Directory Services (NDS), which could allow those users to authenticate to the server. | 7.5 |
| 2002-05-28 | CVE-2002-1447 | Local Buffer Overflow vulnerability in Cisco VPN Client for Unix Buffer overflow in the vpnclient program for UNIX VPN Client before 3.5.2 allows local users to gain administrative privileges via a long profile name in a connect argument. | 7.2 |
| 2002-04-22 | CVE-2002-0159 | USE of Externally-Controlled Format String vulnerability in Cisco Secure Access Control Server Format string vulnerability in the administration function in Cisco Secure Access Control Server (ACS) for Windows, 2.6.x and earlier and 3.x through 3.01 (build 40), allows remote attackers to crash the CSADMIN module only (denial of service of administration function) or execute arbitrary code via format strings in the URL to port 2002. | 7.5 |
| 2001-12-06 | CVE-2001-0867 | Unspecified vulnerability in Cisco 12000 Router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly filter does not properly filter packet fragments even when the "fragment" keyword is used in an ACL, which allows remote attackers to bypass the intended access controls. | 7.5 |
| 2001-12-06 | CVE-2001-0866 | Unspecified vulnerability in Cisco 12000 Router Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could allow remote attackers to bypass the intended access controls. | 7.5 |
| 2001-12-06 | CVE-2001-0865 | Unspecified vulnerability in Cisco 12000 Router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not support the "fragment" keyword in an outgoing ACL, which could allow fragmented packets in violation of the intended access. | 7.5 |
| 2001-12-06 | CVE-2001-0864 | Unspecified vulnerability in Cisco 12000 Router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not properly handle the implicit "deny ip any any" rule in an outgoing ACL when the ACL contains exactly 448 entries, which can allow some outgoing packets to bypass access restrictions. | 7.5 |
| 2001-12-06 | CVE-2001-0862 | Unspecified vulnerability in Cisco 12000 Router Cisco 12000 with IOS 12.0 and line cards based on Engine 2 does not block non-initial packet fragments, which allows remote attackers to bypass the ACL. | 7.5 |