cisco optical networking systems software 3.1.0 vulnerabilities and exploits

(subscribe to this query)

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 uses a "public" SNMP community string that cannot be changed, which allows remote malicious users to obtain sensitive information.

Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.0

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 allows malicious users to cause a denial of service (reset to TCC, TCC+, TCCi or XTC) via a malformed HTTP request that does not contain a leading / (slash) character.

Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 3.0

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote malicious users to gain privileges by connecting to the account via Telnet.

Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.2.0

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 allows remote malicious users to modify the system configuration and delete files by establishing an FTP connection to the TCC, TCC+ or XTC using a username and password that does not exist.

Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.2

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow malicious users to gain privileges by obtaining the passwords from the image database or a backup.

Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.2

NA

Cisco ONS15454 and ONS15327 running ONS prior to 3.4 allows malicious users to cause a denial of service (reset) via an HTTP request to the TCC, TCC+ or XTC, in which the request contains an invalid CORBA Interoperable Object Reference (IOR).

Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 3.0

NA

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote malicious users to gain unauthorized access by logging in with a password larger...

Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 4.1\\(3\\)Cisco Optical Networking Systems Software 4.6\\(0\\)Cisco Optical Networking Systems Software 4.5 Cisco Optical Networking Systems Software 1.0 Cisco Optical Networking Systems Software 4.0\\(2\\)Cisco Optical Networking Systems Software 4.1\\(0\\)Cisco Optical Networking Systems Software 1.1\\(1\\)Cisco Optical Networking Systems Software 1.3\\(0\\)Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 4.1\\(1\\)Cisco Optical Networking Systems Software 4.1\\(2\\)Cisco Optical Networking Systems Software 3.2.0 Cisco Optical Networking Systems Software 4.0\\(0\\)Cisco Optical Networking Systems Software 3.4.0 Cisco Optical Networking Systems Software 4.0.0 Cisco Optical Networking Systems Software 4.0\\(1\\)Cisco Optical Networking Systems Software 4.6\\(1\\)Cisco Optical Networking Systems Software 2.3\\(5\\)Cisco Optical Networking Systems Software 1.1

NA

Cisco ONS15454 optical transport platform running ONS 3.1.0 to 3.2.0 allows remote malicious users to cause a denial of service (reset) by sending IP packets with non-zero Type of Service (TOS) bits to the Timing Control Card (TCC) LAN interface.

Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 3.2.0

NA

Control cards for Cisco Optical Networking System (ONS) 15000 series nodes prior to 20060405 allow remote malicious users to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.

Cisco Ons 15310-cl Series Cisco Ons 15600 Cisco Optical Networking Systems Software 4.0\\(1\\)Cisco Optical Networking Systems Software 4.0\\(2\\)Cisco Optical Networking Systems Software 4.6\\(1\\)Cisco Ons 15454 Mspp Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 4.1\\(0\\)Cisco Optical Networking Systems Software 4.1\\(1\\)Cisco Ons 15454 Mstp Cisco Optical Networking Systems Software 1.0 Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 4.1\\(2\\)Cisco Optical Networking Systems Software 4.1\\(3\\)Cisco Optical Networking Systems Software 1.1 Cisco Optical Networking Systems Software 1.1\\(0\\)Cisco Optical Networking Systems Software 3.4.0 Cisco Optical Networking Systems Software 4.0.0 Cisco Optical Networking Systems Software 4.1.4 Cisco Optical Networking Systems Software 4.6\\(0\\)

NA

Control cards for Cisco Optical Networking System (ONS) 15000 series nodes prior to 20060405 allow remote malicious users to cause a denial of service (card reset) via (1) a "crafted" IP packet to a device with secure mode EMS-to-network-element access, aka bug ID CSCsc...

Cisco Transport Controller 4.0.x Cisco Optical Networking Systems Software 3.4.0 Cisco Optical Networking Systems Software 4.0.0 Cisco Optical Networking Systems Software 4.1.4 Cisco Optical Networking Systems Software 4.6\\(0\\)Cisco Ons 15310-cl Series 0 Cisco Ons 15600 0 Cisco Optical Networking Systems Software 4.0\\(1\\)Cisco Optical Networking Systems Software 4.0\\(2\\)Cisco Optical Networking Systems Software 4.6\\(1\\)Cisco Ons 15454 Mspp Cisco Optical Networking Systems Software 3.0 Cisco Optical Networking Systems Software 3.1.0 Cisco Optical Networking Systems Software 4.1\\(0\\)Cisco Optical Networking Systems Software 4.1\\(1\\)Cisco Optical Networking Systems Software 1.0 Cisco Optical Networking Systems Software 1.1 Cisco Optical Networking Systems Software 1.1\\(0\\)Cisco Optical Networking Systems Software 3.2 Cisco Optical Networking Systems Software 3.3.0 Cisco Optical Networking Systems Software 4.1\\(2\\)Cisco Optical Networking Systems Software 4.1\\(3\\)

Get Started

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook