Vulnerabilities > Cisco > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2004-01-05 | CVE-2003-1001 | Denial-Of-Service vulnerability in Catalyst 7600 Buffer overflow in the Cisco Firewall Services Module (FWSM) in Cisco Catalyst 6500 and 7600 series devices allows remote attackers to cause a denial of service (crash and reload) via HTTP auth requests for (1) TACACS+ or (2) RADIUS authentication. | 5.0 |
| 2003-12-31 | CVE-2003-1132 | Denial-Of-Service vulnerability in Cisco products The DNS server for Cisco Content Service Switch (CSS) 11000 and 11500, when prompted for a nonexistent AAAA record, responds with response code 3 (NXDOMAIN or "Name Error") instead of response code 0 ("No Error"), which allows remote attackers to cause a denial of service (inaccessible domain) by forcing other DNS servers to send and cache a request for a AAAA record to the vulnerable server. | 5.0 |
| 2003-12-01 | CVE-2003-0851 | Remote Denial Of Service vulnerability in OpenSSL ASN.1 Large Recursion OpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recursion) via malformed ASN.1 sequences. | 5.0 |
| 2003-08-27 | CVE-2003-0677 | Denial-Of-Service vulnerability in Cisco Webns 5.00.038S Cisco CSS 11000 routers on the CS800 chassis allow remote attackers to cause a denial of service (CPU consumption or reboot) via a large number of TCP SYN packets to the circuit IP address, aka "ONDM Ping failure." | 5.0 |
| 2003-08-27 | CVE-2003-0512 | Cryptographic Issues vulnerability in Cisco IOS Cisco IOS 12.2 and earlier generates a "% Login invalid" message instead of prompting for a password when an invalid username is provided, which allows remote attackers to identify valid usernames on the system and conduct brute force password guessing, as reported for the Aironet Bridge. | 5.0 |
| 2003-08-27 | CVE-2003-0511 | Unspecified vulnerability in Cisco IOS The web server for Cisco Aironet AP1x00 Series Wireless devices running certain versions of IOS 12.2 allow remote attackers to cause a denial of service (reload) via a malformed URL. | 5.0 |
| 2003-06-09 | CVE-2003-0305 | Denial-Of-Service vulnerability in IOS The Service Assurance Agent (SAA) in Cisco IOS 12.0 through 12.2, aka Response Time Reporter (RTR), allows remote attackers to cause a denial of service (crash) via malformed RTR packets to port 1967. | 5.0 |
| 2003-05-27 | CVE-2003-0260 | Denial-Of-Service vulnerability in VPN 3000 Concentrator Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7A allow remote attackers to cause a denial of service (slowdown and possibly reload) via a flood of malformed ICMP packets. | 5.0 |
| 2003-05-27 | CVE-2003-0259 | Denial-Of-Service vulnerability in VPN 3000 Concentrator Cisco VPN 3000 series concentrators and Cisco VPN 3002 Hardware Client 2.x.x through 3.6.7 allows remote attackers to cause a denial of service (reload) via a malformed SSH initialization packet. | 5.0 |
| 2003-04-02 | CVE-2002-1491 | Unspecified vulnerability in Cisco VPN 5000 Client 5.1.2/5.2.1 The Cisco VPN 5000 Client for MacOS before 5.2.2 records the most recently used login password in plaintext when saving "Default Connection" settings, which could allow local users to gain privileges. | 5.0 |