Cisco

Pix Firewall

13 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5

CVE-2006-3906

  • EPSS 4.28%
  • Veröffentlicht 27.07.2006 22:04:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Internet Key Exchange (IKE) version 1 protocol, as implemented on Cisco IOS, VPN 3000 Concentrators, and PIX firewalls, allows remote attackers to cause a denial of service (resource exhaustion) via a flood of IKE Phase-1 packets that exceed the sess...

7.5

CVE-2006-0515

Exploit
  • EPSS 9.62%
  • Veröffentlicht 09.05.2006 10:02:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Cisco PIX/ASA 7.1.x before 7.1(2) and 7.0.x before 7.0(5), PIX 6.3.x before 6.3.5(112), and FWSM 2.3.x before 2.3(4) and 3.x before 3.1(7), when used with Websense/N2H2, allows remote attackers to bypass HTTP access restrictions by splitting the GET ...

7.5

CVE-2005-4499

  • EPSS 1.91%
  • Veröffentlicht 22.12.2005 11:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The Downloadable RADIUS ACLs feature in Cisco PIX and VPN 3000 concentrators, when creating an ACL on the Cisco Secure Access Control Server (CS ACS), generates a random internal name for an ACL that is also used as a hidden user name and password, w...

5

CVE-2005-3669

  • EPSS 9.46%
  • Veröffentlicht 18.11.2005 21:03:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Multiple unspecified vulnerabilities in the Internet Key Exchange version 1 (IKEv1) implementation in multiple Cisco products allow remote attackers to cause a denial of service (device reset) via certain malformed IKE packets, as demonstrated by the...

7.5

CVE-2004-0079

  • EPSS 2.06%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The do_change_cipher_spec function in OpenSSL 0.9.6c to 0.9.6k, and 0.9.7a to 0.9.7c, allows remote attackers to cause a denial of service (crash) via a crafted SSL/TLS handshake that triggers a null dereference.

5

CVE-2004-0081

  • EPSS 2.27%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

OpenSSL 0.9.6 before 0.9.6d does not properly handle unknown message types, which allows remote attackers to cause a denial of service (infinite loop), as demonstrated using the Codenomicon TLS Test Tool.

5

CVE-2004-0112

  • EPSS 0.67%
  • Veröffentlicht 23.11.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

The SSL/TLS handshaking code in OpenSSL 0.9.7a, 0.9.7b, and 0.9.7c, when using Kerberos ciphersuites, does not properly check the length of Kerberos tickets during a handshake, which allows remote attackers to cause a denial of service (crash) via a ...

7.8

CVE-2003-1003

  • EPSS 0.59%
  • Veröffentlicht 05.01.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Cisco PIX firewall 5.x.x, and 6.3.1 and earlier, allows remote attackers to cause a denial of service (crash and reload) via an SNMPv3 message when snmp-server is set.

5

CVE-2003-1004

  • EPSS 0.66%
  • Veröffentlicht 05.01.2004 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

Cisco PIX firewall 6.2.x through 6.2.3, when configured as a VPN Client, allows remote attackers to cause a denial of service (dropped IPSec tunnel connection) via an IKE Phase I negotiation request to the outside interface of the firewall.

5

CVE-2003-0851

  • EPSS 7.2%
  • Veröffentlicht 01.12.2003 05:00:00
  • Zuletzt bearbeitet 03.04.2025 01:03:51

OpenSSL 0.9.6k allows remote attackers to cause a denial of service (crash via large recursion) via malformed ASN.1 sequences.