Vulnerabilities > Cisco > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2001-06-18 | CVE-2001-0412 | Unspecified vulnerability in Cisco products Cisco Content Services (CSS) switch products 11800 and earlier, aka Arrowpoint, allows local users to gain privileges by entering debug mode. | 7.2 |
| 2001-05-03 | CVE-2001-0288 | Unspecified vulnerability in Cisco IOS Cisco switches and routers running IOS 12.1 and earlier produce predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. | 7.5 |
| 2001-02-28 | CVE-2004-1776 | Unspecified vulnerability in Cisco IOS 12.1(3)/12.1(3)T Cisco IOS 12.1(3) and 12.1(3)T allows remote attackers to read and modify device configuration data via the cable-docsis read-write community string used by the Data Over Cable Service Interface Specification (DOCSIS) standard. | 7.5 |
| 2001-02-16 | CVE-2001-0056 | Unspecified vulnerability in Cisco Broadband Operating System 2.3.8/2.4.1 The Cisco Web Management interface in routers running CBOS 2.4.1 and earlier does not log invalid logins, which allows remote attackers to guess passwords without detection. | 7.5 |
| 2001-02-16 | CVE-2001-0041 | Resource Management Errors vulnerability in Cisco Catos Memory leak in Cisco Catalyst 4000, 5000, and 6000 series switches allows remote attackers to cause a denial of service via a series of failed telnet authentication attempts. | 7.8 |
| 2000-12-19 | CVE-2000-0955 | Remote Username and Password Retrieval vulnerability in Cisco Virtual Central Office 4000 5.1.3 Cisco Virtual Central Office 4000 (VCO/4K) uses weak encryption to store usernames and passwords in the SNMP MIB, which allows an attacker who knows the community name to crack the password and gain privileges. | 7.5 |
| 2000-12-11 | CVE-2000-1056 | Unspecified vulnerability in Cisco Secure Access Control Server 2.1/2.3(3)/2.4(2) CiscoSecure ACS Server 2.4(2) and earlier allows remote attackers to bypass LDAP authentication on the server if the LDAP server allows null passwords. | 7.5 |
| 2000-12-11 | CVE-2000-1022 | Unspecified vulnerability in Cisco PIX Firewall Software The mailguard feature in Cisco Secure PIX Firewall 5.2(2) and earlier does not properly restrict access to SMTP commands, which allows remote attackers to execute restricted commands by sending a DATA command before sending the restricted commands. | 7.5 |
| 2000-04-26 | CVE-2000-0380 | Improper Input Validation vulnerability in Cisco IOS The IOS HTTP service in Cisco routers and switches running IOS 11.1 through 12.1 allows remote attackers to cause a denial of service by requesting a URL that contains a %% string. | 7.1 |
| 2000-02-12 | CVE-2000-0150 | Check Point Firewall-1 allows remote attackers to bypass port access restrictions on an FTP server by forcing it to send malicious packets that Firewall-1 misinterprets as a valid 227 response to a client's PASV attempt. | 7.5 |