This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/h:cisco:ios:12.4xe
Detail
VendorCiscoFirst view 2007-01-11
ProductIosLast view2014-04-24
Version12.4xeTypeHardware
Edition 
Language 
Update 
 
CPE Productcpe:/h:cisco:ios

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
52014-04-24CVE-2012-3946NetworkLowNone Requ...
42014-04-23CVE-2012-5427NetworkLowRequires ...
6.82014-04-23CVE-2012-5422NetworkLowRequires ...
5.42014-04-23CVE-2012-5044NetworkHighNone Requ...
4.62014-04-23CVE-2012-5037LocalLowRequires ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
6.42014-04-23CVE-2012-5032NetworkLowNone Requ...
6.82014-04-23CVE-2012-5017NetworkLowRequires ...
6.32014-04-23CVE-2012-5014NetworkMediumRequires ...
52014-04-23CVE-2012-4658NetworkLowNone Requ...
4.32014-04-23CVE-2012-4651NetworkMediumNone Requ...
4.32014-04-23CVE-2012-3918NetworkMediumNone Requ...
5.42013-11-21CVE-2013-6693NetworkHighNone Requ...
6.82013-11-17CVE-2013-6686NetworkLowRequires ...
6.42013-11-13CVE-2013-5552NetworkLowNone Requ...
52011-10-21CVE-2011-2059NetworkLowNone Requ...
52011-01-07CVE-2010-4687NetworkLowNone Requ...
7.82011-01-07CVE-2010-4686NetworkLowNone Requ...
42011-01-07CVE-2010-4685NetworkLowRequires ...
7.12011-01-07CVE-2010-4684NetworkMediumNone Requ...
7.82011-01-07CVE-2010-4683NetworkLowNone Requ...
7.82011-01-07CVE-2010-4671NetworkLowNone Requ...
6.82011-01-07CVE-2009-5040NetworkLowRequires ...
7.82011-01-07CVE-2009-5039NetworkLowNone Requ...
7.82011-01-07CVE-2009-5038NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
31% (7)CWE-399Resource Management Errors
18% (4)CWE-20Improper Input Validation
13% (3)CWE-264Permissions, Privileges, and Access Controls
9% (2)CWE-287Improper Authentication
9% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
Hide | Show 4 More...
%idName
4% (1)CWE-310Cryptographic Issues
4% (1)CWE-200Information Exposure
4% (1)CWE-189Numeric Errors
4% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:6058Cisco IOS IPS Denial of Service Vulnerability
oval:org.mitre.oval:def:5302Cisco IOS Firewall Application Inspection Control Vulnerability
oval:org.mitre.oval:def:5873Cisco IOS Multicast DoS Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability
oval:org.mitre.oval:def:5477Cisco IOS (GSR device) Multicast DoS Vulnerability
Hide | Show 1 More...
idName
oval:org.mitre.oval:def:5889Cisco IOS Session Initiation Protocol Denial of Service Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
76818Cisco IOS IPv6 Component Crafted Echo Request Packet Remote Information Discl...
70363Cisco IOS IPv6 Stack Neighbor Discovery Router Advertisement Message Saturati...
70351Cisco IOS UDP Crafted SIP REGISTER Message Remote DoS
70350Cisco IOS IPv6 TFTP Copy Remote DoS
70349Cisco IOS Certificate Map Change Public Key Cache Clearing Certificate Ban By...
Hide | Show 15 More...
idDescription
70348Cisco IOS CallManager Express (CME) SIP TRUNK Traffic Rate Burst Request Size...
70347Cisco IOS SCCP Telephony Control Application (STCAPP) Shared Line Multiple Ca...
70341Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Chang...
70340Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Lea...
70339Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS
53136Cisco IOS Multiple Functionality Crafted TCP Packet Sequence Remote DoS
53132Cisco IOS SCP Server Role-based CLI Access Attached CLI View Remote File Mani...
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48738Cisco IOS Malformed Protocol Independent Multicast (PIM) Packet GSR Remote DoS
48737Cisco IOS Crafted Protocol Independent Multicast (PIM) Packet Handling Remote...
48734Cisco IOS Firewall Application Inspection Control (AIC) Malformed HTTP Transi...
48716Cisco IOS SIP Packet Handling Unspecified Remote DoS (3802)
48711Cisco IOS Intrusion Prevention System (IPS) SERVICE.DNS Engine Signature Proc...
32683Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS

OpenVAS Exploits

idDescription
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-743-1 (gs-gpl)
File : nvt/ubuntu_743_1.nasl
2009-06-05Name : Ubuntu USN-744-1 (lcms)
File : nvt/ubuntu_744_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Nessus® Vulnerability Scanner

idDescription
2014-07-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCty73682.nasl - Type : ACT_GATHER_INFO
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-iosfwhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-iosipshttp.nasl - Type : ACT_GATHER_INFO
Hide | Show 5 More...
idDescription
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-multicasthttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-siphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-scphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-tcphttp.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote router can be crashed remotely.
File : CSCsf28840.nasl - Type : ACT_GATHER_INFO