This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/h:cisco:ios:12.3yj
Detail
VendorCiscoFirst view 2005-11-30
ProductIosLast view2012-09-26
Version12.3yjTypeHardware
Edition 
Language 
Update 
 
CPE Productcpe:/h:cisco:ios

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.82012-09-26CVE-2012-3949NetworkLowNone Requ...
4.32009-01-16CVE-2008-3821NetworkMediumNone Requ...
7.12008-09-26CVE-2008-3809NetworkMediumNone Requ...
7.82008-09-26CVE-2008-3808NetworkLowNone Requ...
7.12007-02-13CVE-2007-0918NetworkMediumNone Requ...
Hide | Show 3 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
52007-01-11CVE-2007-0199NetworkLowNone Requ...
102006-09-23CVE-2006-4950NetworkLowNone Requ...
2.62005-11-30CVE-2005-3921NetworkHighNone Requ...

CWE : Common Weakness Enumeration

%idName
66% (2)CWE-20Improper Input Validation
33% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:5832Cisco IOS Regular Expression ATOMIC.TCP DoS Vulnerability
oval:org.mitre.oval:def:5873Cisco IOS Multicast DoS Vulnerability
oval:org.mitre.oval:def:5665Cisco Systems Non-DOCSIS Platform Default DOCSIS SNMP Support Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability
oval:org.mitre.oval:def:5867Cisco IOS HTTP Server Router Administration Script Injection Vulnerability
Hide | Show 1 More...
idName
oval:org.mitre.oval:def:5477Cisco IOS (GSR device) Multicast DoS Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48738Cisco IOS Malformed Protocol Independent Multicast (PIM) Packet GSR Remote DoS
48737Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote...
33053Cisco IOS IPS ATOMIC.TCP Signature Engine Crafted Request Remote DoS
Hide | Show 3 More...
idDescription
32683Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS
29034Cisco IOS DOCSIS Persistent Default SNMP Community String
21360Cisco IOS HTTP show buffers Arbitrary Script Insertion

OpenVAS Exploits

idDescription
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Snort® IPS/IDS

DateDescription
2014-01-10Cisco IOS HTTP service HTML injection attempt
RuleID : 17287 - Type : SERVER-WEBAPP - Revision : 10

Nessus® Vulnerability Scanner

idDescription
2013-07-08Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-cucm.nasl - Type : ACT_GATHER_INFO
2012-09-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20120926-sip.nasl - Type : ACT_GATHER_INFO
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2012-01-10Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20060920-docsis.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20051201-httphttp.nasl - Type : ACT_GATHER_INFO
Hide | Show 5 More...
idDescription
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070213-iosipshttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO
2007-03-01Name : The remote CISCO device can be crashed remotely.
File : CSCsg15598.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote router can be crashed remotely.
File : CSCsf28840.nasl - Type : ACT_GATHER_INFO