This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/h:cisco:ios:12.2yz
Detail
VendorCiscoFirst view 2003-08-27
ProductIosLast view2012-09-26
Version12.2yzTypeHardware
Edition 
Language 
Update 
 
CPE Productcpe:/h:cisco:ios

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.82012-09-26CVE-2012-3949NetworkLowNone Requ...
7.12009-03-27CVE-2009-0637NetworkHighRequires ...
5.42009-03-27CVE-2009-0629NetworkHighNone Requ...
4.32009-01-16CVE-2008-3821NetworkMediumNone Requ...
7.12008-09-26CVE-2008-3809NetworkMediumNone Requ...
Hide | Show 8 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82008-09-26CVE-2008-3808NetworkLowNone Requ...
7.12008-03-27CVE-2008-1151NetworkMediumNone Requ...
7.12008-03-27CVE-2008-1150NetworkMediumNone Requ...
52007-01-11CVE-2007-0199NetworkLowNone Requ...
102006-09-23CVE-2006-4950NetworkLowNone Requ...
2.62005-11-30CVE-2005-3921NetworkHighNone Requ...
52004-12-31CVE-2004-1464NetworkLowNone Requ...
7.52003-08-27CVE-2003-0647NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
50% (2)CWE-399Resource Management Errors
25% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
25% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:5598Cisco IOS Virtual Private Dial-up Network (VPDN) Denial of Service (DoS) Vuln...
oval:org.mitre.oval:def:5873Cisco IOS Multicast DoS Vulnerability
oval:org.mitre.oval:def:5665Cisco Systems Non-DOCSIS Platform Default DOCSIS SNMP Support Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability
oval:org.mitre.oval:def:5867Cisco IOS HTTP Server Router Administration Script Injection Vulnerability
Hide | Show 2 More...
idName
oval:org.mitre.oval:def:5477Cisco IOS (GSR device) Multicast DoS Vulnerability
oval:org.mitre.oval:def:5287Cisco IOS Virtual Private Dial-up Network (VPDN) PPTP Session Termination Mem...

Open Source Vulnerability Database (OSVDB)

idDescription
53136Cisco IOS Multiple Functionality Crafted TCP Packet Sequence Remote DoS
53132Cisco IOS SCP Server Role-based CLI Access Attached CLI View Remote File Mani...
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48738Cisco IOS Malformed Protocol Independent Multicast (PIM) Packet GSR Remote DoS
Hide | Show 8 More...
idDescription
48737Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote...
43795Cisco IOS PPTP Session Termination Memory Exhaustion DoS
43794Cisco IOS PPTP Session Termination Virtual Access Interface (IDB) Exhaustion DoS
32683Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS
29034Cisco IOS DOCSIS Persistent Default SNMP Community String
21360Cisco IOS HTTP show buffers Arbitrary Script Insertion
9265Cisco IOS Telnet Service DoS
2342Cisco IOS Long HTTP GET Request Overflow

OpenVAS Exploits

idDescription
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-743-1 (gs-gpl)
File : nvt/ubuntu_743_1.nasl
2009-06-05Name : Ubuntu USN-744-1 (lcms)
File : nvt/ubuntu_744_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Cisco IOS HTTP service HTML injection attempt
RuleID : 17287 - Type : SERVER-WEBAPP - Revision : 10

Nessus® Vulnerability Scanner

idDescription
2013-07-08Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-cucm.nasl - Type : ACT_GATHER_INFO
2012-09-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-sip.nasl - Type : ACT_GATHER_INFO
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2012-01-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sn-20030730-ios-2gb-get.nasl - Type : ACT_GATHER_INFO
2012-01-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20060920-docsis.nasl - Type : ACT_GATHER_INFO
Hide | Show 9 More...
idDescription
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20040827-telnethttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20051201-httphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080326-pptphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-scphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-tcphttp.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote router can be crashed remotely.
File : CSCsf28840.nasl - Type : ACT_GATHER_INFO
2004-11-04Name : The remote device is missing a vendor-supplied security patch.
File : CSCef46191.nasl - Type : ACT_GATHER_INFO