This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Summuary
CPE Namecpe:/h:cisco:ios:12.4xk
Detail
VendorCiscoFirst view 2007-01-11
ProductIosLast view2016-09-22
Version12.4xkTypeHardware
Edition 
Language 
Update 
 
CPE Productcpe:/h:cisco:ios

Activity : Overall

Related : CVE

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
 DateAlertAccess VectorAccess ComplexityAuthentication
4.32016-09-22CVE-2014-2146NetworkMediumNone Requ...
4.32016-09-18CVE-2016-6403NetworkMediumNone Requ...
7.12015-02-15CVE-2015-0609NetworkMediumNone Requ...
4.32015-02-11CVE-2015-0610NetworkMediumNone Requ...
7.12015-02-11CVE-2015-0608NetworkMediumNone Requ...
Hide | Show 20 More...
 DateAlertAccess VectorAccess ComplexityAuthentication
7.82015-02-11CVE-2015-0592NetworkLowNone Requ...
7.82015-01-28CVE-2015-0586NetworkLowNone Requ...
4.32014-05-16CVE-2014-3262NetworkMediumNone Requ...
52014-04-24CVE-2012-3946NetworkLowNone Requ...
42014-04-23CVE-2012-5427NetworkLowRequires ...
6.82014-04-23CVE-2012-5422NetworkLowRequires ...
5.42014-04-23CVE-2012-5044NetworkHighNone Requ...
4.62014-04-23CVE-2012-5037LocalLowRequires ...
6.42014-04-23CVE-2012-5032NetworkLowNone Requ...
6.82014-04-23CVE-2012-5017NetworkLowRequires ...
6.32014-04-23CVE-2012-5014NetworkMediumRequires ...
52014-04-23CVE-2012-4658NetworkLowNone Requ...
4.32014-04-23CVE-2012-4651NetworkMediumNone Requ...
4.32014-04-23CVE-2012-3918NetworkMediumNone Requ...
52014-04-04CVE-2014-2143NetworkLowNone Requ...
7.12014-03-20CVE-2014-2124NetworkMediumNone Requ...
5.42013-11-21CVE-2013-6693NetworkHighNone Requ...
6.82013-11-17CVE-2013-6686NetworkLowRequires ...
6.42013-11-13CVE-2013-5552NetworkLowNone Requ...

CWE : Common Weakness Enumeration

%idName
32% (10)CWE-399Resource Management Errors
19% (6)CWE-20Improper Input Validation
9% (3)CWE-362Race Condition
9% (3)CWE-264Permissions, Privileges, and Access Controls
6% (2)CWE-287Improper Authentication
Hide | Show 6 More...
%idName
6% (2)CWE-119Failure to Constrain Operations within the Bounds of a Memory Buffer
3% (1)CWE-310Cryptographic Issues
3% (1)CWE-200Information Exposure
3% (1)CWE-189Numeric Errors
3% (1)CWE-79Failure to Preserve Web Page Structure ('Cross-site Scripting')
3% (1)CWE-19Data Handling

CAPEC : Common Attack Pattern Enumeration & Classification

This CPE have more than 25 Relations. If you want to see a complete summary for this CPE, please contact us.
idName
CAPEC-3Using Leading 'Ghost' Character Sequences to Bypass Input Filters
CAPEC-7Blind SQL Injection
CAPEC-8Buffer Overflow in an API Call
CAPEC-9Buffer Overflow in Local Command-Line Utilities
CAPEC-10Buffer Overflow via Environment Variables
Hide | Show 20 More...
idName
CAPEC-13Subverting Environment Variable Values
CAPEC-14Client-side Injection-induced Buffer Overflow
CAPEC-18Embedding Scripts in Nonscript Elements
CAPEC-22Exploiting Trust in Client (aka Make the Client Invisible)
CAPEC-24Filter Failure through Buffer Overflow
CAPEC-28Fuzzing
CAPEC-31Accessing/Intercepting/Modifying HTTP Cookies
CAPEC-32Embedding Scripts in HTTP Query Strings
CAPEC-42MIME Conversion
CAPEC-43Exploiting Multiple Input Interpretation Layers
CAPEC-45Buffer Overflow via Symbolic Links
CAPEC-46Overflow Variables and Tags
CAPEC-47Buffer Overflow via Parameter Expansion
CAPEC-52Embedding NULL Bytes
CAPEC-53Postfix, Null Terminate, and Backslash
CAPEC-63Simple Script Injection
CAPEC-64Using Slashes and URL Encoding Combined to Bypass Validation Logic
CAPEC-66SQL Injection
CAPEC-67String Format Overflow in syslog()
CAPEC-71Using Unicode Encoding to Bypass Validation Logic

Oval Markup Language : Definitions

OvalIDName
oval:org.mitre.oval:def:6058Cisco IOS IPS Denial of Service Vulnerability
oval:org.mitre.oval:def:5302Cisco IOS Firewall Application Inspection Control Vulnerability
oval:org.mitre.oval:def:5714Cisco IOS 12.4 Malformed DLSw Message DoS Vulnerability

Open Source Vulnerability Database (OSVDB)

idDescription
76818Cisco IOS IPv6 Component Crafted Echo Request Packet Remote Information Discl...
70363Cisco IOS IPv6 Stack Neighbor Discovery Router Advertisement Message Saturati...
70351Cisco IOS UDP Crafted SIP REGISTER Message Remote DoS
70350Cisco IOS IPv6 TFTP Copy Remote DoS
70349Cisco IOS Certificate Map Change Public Key Cache Clearing Certificate Ban By...
Hide | Show 12 More...
idDescription
70348Cisco IOS CallManager Express (CME) SIP TRUNK Traffic Rate Burst Request Size...
70347Cisco IOS SCCP Telephony Control Application (STCAPP) Shared Line Multiple Ca...
70341Cisco IOS CallManager Express (CME) Extension Mobility Phone SNR Number Chang...
70340Cisco IOS H.323 gk_circuit_info_do_in_acf Function Call Saturation Memory Lea...
70339Cisco IOS IRC Traffic Initial Reload Corrupted Magic Value Remote DoS
53136Cisco IOS Multiple Functionality Crafted TCP Packet Sequence Remote DoS
53132Cisco IOS SCP Server Role-based CLI Access Attached CLI View Remote File Mani...
51394Cisco IOS HTTP Server URL Strings Unspecified XSS
51393Cisco IOS HTTP Server /ping Script XSS
48734Cisco IOS Firewall Application Inspection Control (AIC) Malformed HTTP Transi...
48711Cisco IOS Intrusion Prevention System (IPS) SERVICE.DNS Engine Signature Proc...
32683Cisco IOS Data-link Switching (DLSw) Capabilities Exchange Remote DoS

OpenVAS Exploits

idDescription
2016-05-04Name : Cisco IOS Software and IOS XE Software LISP Denial of Service Vulnerability
File : nvt/gb_cisco_ios_Cisco-SA-20140514-CVE-2014-3262.nasl
2009-06-05Name : Ubuntu USN-707-1 (cupsys)
File : nvt/ubuntu_707_1.nasl
2009-06-05Name : Ubuntu USN-743-1 (gs-gpl)
File : nvt/ubuntu_743_1.nasl
2009-06-05Name : Ubuntu USN-744-1 (lcms)
File : nvt/ubuntu_744_1.nasl
2009-01-20Name : Ubuntu USN-708-1 (hplip)
File : nvt/ubuntu_708_1.nasl

Nessus® Vulnerability Scanner

idDescription
2016-06-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-CSCun94946-ios.nasl - Type : ACT_GATHER_INFO
2016-06-27Name : The remote device is missing a vendor-supplied security patch.
File : cisco-CSCun96847-iosxe.nasl - Type : ACT_GATHER_INFO
2014-11-14Name : The remote device is running a vulnerable IOS version.
File : cisco-sn-CVE-2014-3262-ios.nasl - Type : ACT_GATHER_INFO
2014-11-14Name : The remote device is running a vulnerable IOS XE version.
File : cisco-sn-CVE-2014-3262-iosxe.nasl - Type : ACT_GATHER_INFO
2014-07-02Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCty73682.nasl - Type : ACT_GATHER_INFO
Hide | Show 8 More...
idDescription
2014-04-28Name : The remote device is missing a vendor-supplied security patch.
File : cisco_ios_CSCun31021.nasl - Type : ACT_GATHER_INFO
2012-01-11Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sr-20090114-http.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20070110-dlswhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-iosfwhttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20080924-iosipshttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-scphttp.nasl - Type : ACT_GATHER_INFO
2010-09-01Name : The remote device is missing a vendor-supplied security patch.
File : cisco-sa-20090325-tcphttp.nasl - Type : ACT_GATHER_INFO
2007-01-17Name : The remote router can be crashed remotely.
File : CSCsf28840.nasl - Type : ACT_GATHER_INFO