This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Name cpe:/h:cisco:ios:12.4
Detail
Vendor Cisco First view 2007-02-13
Product Ios Last view 2009-03-27
Version 12.4 Type Hardware
Edition  
Language  
Update  
 
CPE Product cpe:/h:cisco:ios

Activity : Overall

Related : CVE

 DateAlertAccess VectorAccess ComplexityAuthentication
7.1 2009-03-27 CVE-2009-0637 Network High Requires ...
5.4 2009-03-27 CVE-2009-0629 Network High None Requ...
4.3 2009-01-16 CVE-2008-3821 Network Medium None Requ...
7.8 2008-09-26 CVE-2008-3808 Network Low None Requ...
8.5 2008-09-26 CVE-2008-3806 Network Low None Requ...
Hide | Show 9 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
8.5 2008-09-26 CVE-2008-3805 Network Low None Requ...
7.1 2008-09-26 CVE-2008-3804 Network Medium None Requ...
7.1 2008-09-26 CVE-2008-3802 Network Medium None Requ...
7.1 2008-09-26 CVE-2008-3801 Network Medium None Requ...
7.1 2008-09-26 CVE-2008-3800 Network Medium None Requ...
7.8 2008-09-26 CVE-2008-3799 Network Low None Requ...
7.8 2008-09-26 CVE-2008-3798 Network Low None Requ...
9.3 2008-09-18 CVE-2008-4128 Network Medium None Requ...
7.1 2007-02-13 CVE-2007-0918 Network Medium None Requ...

CWE : Common Weakness Enumeration

%idName
33% (2)CWE-264Permissions, Privileges, and Access Controls
16% (1)CWE-399Resource Management Errors
16% (1)CWE-352Cross-Site Request Forgery (CSRF)
16% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
16% (1)CWE-20Improper Input Validation

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:5832Cisco IOS Regular Expression ATOMIC.TCP DoS Vulnerability
oval:org.mitre.oval:def:6087Cisco IOS Processing SSL Packet Vulnerability
oval:org.mitre.oval:def:5927Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
oval:org.mitre.oval:def:6086Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
oval:org.mitre.oval:def:6047Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
Hide | Show 5 More...
idName
oval:org.mitre.oval:def:5889Cisco IOS Session Initiation Protocol Denial of Service Vulnerability
oval:org.mitre.oval:def:5619Cisco IOS MPLS Forwarding Infrastructure Denial of Service Vulnerability
oval:org.mitre.oval:def:5910Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability
oval:org.mitre.oval:def:7123Cisco 10000, uBR10012, uBR7200 Series Devices IPC Vulnerability
oval:org.mitre.oval:def:5873Cisco IOS Multicast DoS Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
53136Cisco IOS Multiple Functionality Crafted TCP Packet Sequence Remote DoS
53132Cisco IOS SCP Server Role-based CLI Access Attached CLI View Remote File Mani...
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48741Cisco IOS MFI Implementation MPLS Packet Handling Remote DoS
Hide | Show 8 More...
idDescription
48740Cisco IOS IPC Message Handling Remote DoS
48737Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote...
48716Cisco IOS SIP Packet Handling Unspecified Remote DoS (3802)
48715Cisco IOS / CUCM SIP Packet Handling Unspecified Remote DoS (3801)
48714Cisco IOS / CUCM SIP Packet Handling Unspecified Remote DoS (3800)
48713Cisco IOS SIP Packet Handling Memory Exhaustion Remote DoS
48712Cisco IOS Unspecified SSL Packet Handling Remote DoS
33053Cisco IOS IPS ATOMIC.TCP Signature Engine Crafted Request Remote DoS

Milw0rm Exploits

idDescription
2008-09-17Cisco Router HTTP Administration CSRF Command Execution Exploit 2
2008-09-17Cisco Router HTTP Administration CSRF Command Execution Exploit

OpenVAS Exploits

idDescription
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-743-1 (gs-gpl)
File : nvt/ubuntu_743_1.nasl
2009-06-05Name : Ubuntu USN-744-1 (lcms)
File : nvt/ubuntu_744_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Information Assurance Vulnerability Management (IAVM)

idDescription
2008-B-0068Cisco 10000 uBR10012 uBR7200 Series Devices IPC Vulnerability
Severity : Category I - VMSKEY : V0017466

Nessus® Vulnerability Scanner

idDescription
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070213-iosipshttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-ipchttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-mfihttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO
Hide | Show 5 More...
idDescription
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-siphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-sslhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-scphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-tcphttp.nasl - Type : ACT_GATHER_INFO
2007-03-01Name : The remote CISCO device can be crashed remotely.
File : CSCsg15598.nasl - Type : ACT_GATHER_INFO