.:[ packet storm ]:.
                               
plan for the worst
plan for the worst

 Section:  .. / advisories / cisco  /

Page 1 of 2
<< 1 2 >> Files 1 - 25 of 37
Currently sorted by: File NameSort By: Last Modified, File Size

 ///  File Name: cisco-3000.txt
Description:
 The Cisco VPN3000 gateway lets remote client dictate which maximum MTU to use when sending back ESP frames, regardless of the transmitting capabilities of the physical medium. This can lead to denial of service conditions.
Author:Master Phi
File Size:2052
Last Modified:Jul 12 09:29:41 2002
MD5 Checksum:22abcad0808b4ff889974a197cfb521e

 ///  File Name: cisco-ata-186.txt
Description:
 Cisco Security Advisory - A vulnerability found in the web interface that comes with the Cisco ATA 186 Analog Telephone Adaptor be used to remotely disclose passwords by retrieving the router config via a specially crafted POST request.
Homepage:http://www.cisco.com/warp/public/707/advisory.html
File Size:8054
Last Modified:May 25 19:53:31 2002
MD5 Checksum:75fbb19b5f876c5bdbac50ebafe9176e

 ///  File Name: cisco-cbos-dos.txt
Description:
 Cisco Security Advisory - Three new denial of service vulnerabilities involving large packets have been found in Cisco routers that are running the CBOS software. This affects the following Cisco devices: 605, 626, 627, 633, 673, 675, 675e, 676, 677, 677i and 678.
Homepage:http://www.cisco.com/warp/public/707/advisory.html
File Size:9033
Last Modified:May 25 19:52:04 2002
MD5 Checksum:e15833ccbf8a5ab9f5a58121cdd65b31

 ///  File Name: cisco-ip-telephone.txt
Description:
 Cisco Security Advisory - Multiple Vulnerabilities in Cisco IP Telephones. Bugs found in the Cisco IP Telephones can result in denial of service conditions and allow unauthorized access to the configuration settings of the Cisco IP Phone models 7910, 7940, and 7960.
Homepage:http://www.cisco.com/warp/public/707/advisory.html
File Size:11592
Last Modified:May 24 09:42:30 2002
MD5 Checksum:5be4f91e288a97ccb48243948ce0260c

 ///  File Name: cisco-sa-20031202-SNMP-trap.txt
Description:
 Cisco Security Advisory 20031202 - Cisco Aironet Access Points (AP) running Cisco IOS software will send any static Wired Equivalent Privacy (WEP) key in the cleartext to the Simple Network Management Protocol (SNMP) server if the snmp-server enable traps wlan-wep command is enabled. Cisco Aironet 1100, 1200, and 1400 series are affected, but the command is disabled by default.
Homepage:http://www.cisco.com/security
File Size:9606
Last Modified:Dec 3 04:43:00 2003
MD5 Checksum:65518f0742d4bd46b464f831a968adf3

 ///  File Name: cisco-sa-20031210-ACNS-auth.txt
Description:
 Cisco ACNS software prior to 4.2.11 or 5.0.5 contain a remotely exploitable buffer overflow which is triggered by a long password. Affected devices include Content Routers 4400 series, Content Distribution Manager 4600 series, Content Engine 500 and 7300 series, and Content Engine Module for Cisco Routers 2600, 3600 and 3700 series. Workaround is to disable the CE GUI with the command "no gui-server enable".
Homepage:http://www.cisco.com/warp/public/707/cisco-sa-20031210-ACNS-auth.shtml
File Size:6733
Last Modified:Dec 15 04:32:59 2003
MD5 Checksum:93625507bb30da8fc0ac7d3d633671b7

 ///  File Name: cisco-vpn-client.txt
Description:
 Cisco Security Advisory - A buffer overflow in the Cisco VPN Clients for Linux, Solaris, and Mac OS X platforms can be exploited locally to gain local root access. This is fixed in v3.5.2.
Homepage:http://www.cisco.com
File Size:10689
Last Modified:Jun 20 10:00:30 2002
MD5 Checksum:a62ed0a23d87903525d301700049ea09

 ///  File Name: Cisco-VPN-Client.txt
Description:
 The Cisco VPN 5000 clients for Linux and Solaris contain buffer overflow vulnerabilities that can be used by local users to execute machine code with root privileges.
Author:Niels Heinen
Homepage:http://www.ubizen.com
File Size:2945
Last Modified:Sep 19 01:16:25 2002
MD5 Checksum:c6560559cd40d4e3f9c2d7d3f849c9cb

 ///  File Name: cisco.00-04-19.enable
Description:
 Cisco Security Advisory: Cisco Catalyst Enable Password Bypass Vulnerability. Cisco Catalyst software permits unauthorized access to the enable mode in the 5.4(1) release. Once initial access is granted, access can be obtained for the higher level "enable" mode without a password.
File Size:8597
Last Modified:Apr 23 11:41:38 2000
MD5 Checksum:37453138d933754d84c8a8577b6d9cc1

 ///  File Name: cisco.00-04-20.telnet
Description:
 Cisco Security Advisory: Cisco IOS Software TELNET Option Handling Vulnerability. A defect in multiple Cisco IOS software versions will cause a Cisco router to reload unexpectedly when the router is tested for security vulnerabilities by security scanning software programs. The defect can be exploited repeatedly to produce a consistent denial of service (DoS) attack. Vulnerable releases include 11.3AA, 12.0(2) up to and including 12.0(6), and 12.0(7).
File Size:17594
Last Modified:Apr 23 11:48:01 2000
MD5 Checksum:27305612e78c4c70907ce2f5433761ed

 ///  File Name: cisco.00-05-14.http
Description:
 A defect in multiple releases of Cisco IOS software will cause a Cisco router or switch to halt and reload if the IOS HTTP service is enabled and browsing to "http:///%%" is attempted. This defect can be exploited to produce a denial of service (DoS) attack. This defect has been discussed on public mailing lists and should be considered public information.
Homepage:http://www.cisco.com/warp/public/707/ioshttpserver-pub.shtml
File Size:29196
Last Modified:May 17 22:44:07 2000
MD5 Checksum:177d2675ccf94d2117289316882510d8

 ///  File Name: cisco.00-07-11.tcpreset
Description:
 Cisco Secure PIX Firewall TCP Reset Vulnerability - The Cisco Secure PIX Firewall cannot distinguish between a forged TCP Reset (RST) packet and a genuine TCP RST packet because the sequence number is not checked. Any TCP/IP connection established through the Cisco Secure PIX Firewall can be terminated by a third party from the untrusted network if the connection can be uniquely determined. If only source ip / destination ip / destination port are known, a RST packet can be sent with each source port.
Homepage:http://www.cisco.com/warp/public/707/sec_incident_response.shtml
File Size:11676
Last Modified:Jul 22 08:39:50 2000
MD5 Checksum:0d51fab0034e2a9fac7169070d05a8a2

 ///  File Name: cisco.00-08-03.gigabit
Description:
 Cisco Security Advisory - A defect in Cisco IOS Software running on all models of Gigabit Switch Routers (GSRs) configured with Gigabit Ethernet or Fast Ethernet cards may cause packets to be forwarded without correctly evaluating configured access control lists (ACLs). In addition to circumventing the access control lists, it is possible to stop an interface from forwarding any packets, thus causing a denial of service. There is no workaround - Customers are urged to upgrade to unaffected versions of software as soon as possible.
Homepage:http://www.cisco.com
File Size:11939
Last Modified:Aug 4 02:40:01 2000
MD5 Checksum:27ef81cd0e03f8f503abba3d498f04ef

 ///  File Name: cisco.00-09-21.ciscosecure_acs
Description:
 Cisco Security Advisory - This advisory highlights three vulnerabilities found in the CiscoSecure Access Control Server for Windows NT. The first bug is a buffer overflow in the CSAdmin module that allows a malicious user to execute arbitrary code or crash the module by sending an oversized packet to TCP port 2002. The second vulnerability involves sending an oversized TACACS+ packet to the CiscoSecure ACS thereby creating an unstable condition within the system conducive to denial of service attacks. Lastly, the enable password can be bypassed to gain unauthorized access to a router or switch if the interaction is between an LDAP server that allows null passwords and a CiscoSecure ACS for Windows NT. All releases of CiscoSecure ACS for Windows NT Server up to and including 2.1(x), 2.3(3), and 2.4(2) are vulnerable. CiscoSecure ACS for UNIX is not affected.
Homepage:http://www.cisco.com
File Size:14817
Last Modified:Sep 22 21:59:09 2000
MD5 Checksum:f911feded42207577565c591a9f00715

 ///  File Name: cisco.00-09-27.ciscosecure_pix
Description:
 Cisco Advisory - The Cisco Secure PIX firewall feature "mailguard," which limits SMTP commands to a specified minimum set of commands, can be bypassed. This vulnerability can be exploited to bypass SMTP command filtering. All users of Cisco Secure PIX Firewalls with software versions up to and including 4.4(5), 5.0(3), 5.1(2) and 5.2(1) that provide access to SMTP Mail services are at risk. The IOS Firewall featureset is not affected by either of the above defects.
Homepage:http://www.cisco.com/warp/public/707/sec_incident_response.shtml
File Size:8850
Last Modified:Oct 7 07:41:52 2000
MD5 Checksum:11bcea2f363499cdbbbf1465aa2bbe19

 ///  File Name: cisco.00-12-06.memleak
Description:
 Cisco Security Advisory - Catalyst Memory Leak Vulnerability. A series of failed telnet authentication attempts to the switch can cause the Catalyst Switch to fail to pass traffic or accept management connections until the system is rebooted or a power cycle is performed. All types of telnet authentication are affected, including Kerberized telnet, and AAA authentication.
Homepage:http://www.cisco.com/warp/public/707/sec_incident_response.shtml
File Size:6811
Last Modified:Dec 7 20:01:21 2000
MD5 Checksum:9b1539403f297d72a54b5354e0c90da1

 ///  File Name: cisco.01-09-26.pix.smtp
Description:
 Cisco Security Advisory - The Cisco Secure PIX firewall feature "mailguard" which limits SMTP commands to a specified minimum set of commands can be bypassed. To exploit this vulnerability, attackers must be able to make connections to an SMTP mail server protected by the PIX Firewall. All users of Cisco Secure PIX Firewalls with software versions 6.0(1), 5.2(5) and 5.2(4) that provide access to SMTP Mail services are at risk.
Homepage:http://www.cisco.com
File Size:8579
Last Modified:Sep 27 08:20:01 2001
MD5 Checksum:bd7bb40432ce6ef1c3c4e10f11438049

 ///  File Name: cisco.01-11-14.12xxx.ACL
Description:
 Cisco Security Advisory - Six vulnerabilities involving ACLs have been discovered in multiple releases of Cisco IOSR Software Release for Cisco 12000 Series Internet Routers.
Homepage:http://www.cisco.com
File Size:19564
Last Modified:Nov 15 07:47:27 2001
MD5 Checksum:680b74148f9c721169d492e5e6d90534

 ///  File Name: cisco.01-11-14.12xxx.icmp
Description:
 Cisco Security Advisory - A vulnerability causing performance degradation on Cisco 12000 series routers when receiving large numbers of ICMP Unreachable packets has been discovered.
Homepage:http://www.cisco.com
File Size:17004
Last Modified:Nov 15 07:52:33 2001
MD5 Checksum:9d945b095955cb7d2951b1f559648487

 ///  File Name: cisco.98-05-13.web_cache_control
Description:
 Cisco Web Cache Control Protocol Router Vulnerability
File Size:8676
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:58a95da302289a916024811e40b01c3f

 ///  File Name: cisco.98-09-11.pix_cbac_frag
Description:
 Cisco PIX and CBAC Fragmentation Attack
File Size:26914
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:c3d2ebbf070779efc6b7db27791ca234

 ///  File Name: cisco.98-10-14.ios_command_history
Description:
 cisco.98-10-14.ios_command_history
File Size:16898
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:155476f384d623fdfb1c0a527f787fb2

 ///  File Name: cisco.98-11-05.access_list_leak
Description:
 Cisco IOS DFS Access List Leakage
File Size:26018
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:bcf0867cb4f25bced43607c4f97cd7ef

 ///  File Name: cisco.99-01-11.ios_crash
Description:
 cisco.99-01-11.ios_crash
File Size:26202
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:9b487478f949e76271087ba2247f40dc

 ///  File Name: cisco.99-03-11.7xx_tcp_http
Description:
 cisco.99-03-11.7xx_tcp_http
File Size:12535
Last Modified:Sep 23 05:48:10 1999
MD5 Checksum:5fc4770b21cc75ceb781c269c8ac4c01
 

 ///  Last 10 Files
  1. :· MDVSA-2008-235.txt
  2. :· cambridge-sql.txt
  3. :· verlihub-exec.txt
  4. :· DDIVRT-2008-15.txt
  5. :· openssh-cbc-adv.txt
  6. :· joomlathyme-sql.txt
  7. :· BitDefenderDOS.zip
  8. :· fwknop-1.9.9.tar.gz
  9. :· kvirc-exec.txt
  10. :· vcalendar-disclose.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Advisories
  1. :· MDVSA-2008-235.txt
  2. :· DDIVRT-2008-15.txt
  3. :· openssh-cbc-adv.txt
  4. :· ZDI-08-076.txt
  5. :· ZDI-08-075.txt
  6. :· MDVSA-2008-233.txt
  7. :· SSRT080059.txt
  8. :· MDVSA-2008-220-1.txt
  9. :· MDVSA-2008-232.txt
  10. :· USN-674-1.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Exploits
  1. :· cambridge-sql.txt
  2. :· verlihub-exec.txt
  3. :· joomlathyme-sql.txt
  4. :· BitDefenderDOS.zip
  5. :· kvirc-exec.txt
  6. :· vcalendar-disclose.txt
  7. :· toursmanager-blindsql.txt
  8. :· phprsgal-sql.txt
  9. :· natterchat-sql.txt
  10. :· php526-bypass.txt
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Tools
  1. :· fwknop-1.9.9.tar.gz
  2. :· pysumpas-0.2.0.tar.gz
  3. :· framework-3.2.tar.gz
  4. :· tor.uclibc.i686.20081115.iso
  5. :· RFIDIOt-Windows-0.1u.zip
  6. :· RFIDIOt-0.1u.tgz
  7. :· dps-v1.5.tar.gz
  8. :· smbrelay3.zip
  9. :· mptrey.tar.gz
  10. :· dotnetsploitsrc-1.0.zip
[ Last 20 | Last 50 | Last 100 ]

 ///  Last 10 Misc
  1. :· java2-malware.pdf
  2. :· return-to-libc-linux.txt
  3. :· stack-overflow-linux.txt
  4. :· smallest_setuid_execve_sc.c
  5. :· sudoers-shellcode.txt
  6. :· strongswan-4.2.9.tar.gz
  7. :· hodetector-shellcode.txt
  8. :· rtm-essential5.pdf
  9. :· unixasm-1.3.0.tar.gz
  10. :· bnd-networks.pdf
[ Last 20 | Last 50 | Last 100 ]


 .:. TopPrivacy Statement | Copyright Notice