CVE-2007-0199: The Data-link Switching (DLSw) feature in Cisco IOS 11.0 through 12.4 allows remote attackers to cause a denial of service (device reload) via "an invalid…

CVE-2011-1625 [MEDIUM] CWE-362 GHSA-v8pm-776c-452x: Cisco IOS 12 Cisco IOS 12.2, 12.3, 12.4, 15.0, and 15.1, when the data-link switching (DLSw) feature is configured, allows remote attackers to cause a denial of service (device crash) by sending a sequence of malformed packets and leveraging a "narrow timing window," aka Bug ID CSCtf74999, a different vulnerability than CVE-2007-0199, CVE-2008-1152, and CVE-2009-0629.

CVE-2007-0199 [MEDIUM] GHSA-9673-77f3-57fv: The Data-link Switching (DLSw) feature in Cisco IOS 11 The Data-link Switching (DLSw) feature in Cisco IOS 11.0 through 12.4 allows remote attackers to cause a denial of service (device reload) via "an invalid value in a DLSw message... during the capabilities exchange."

CVE-2007-0199 [HIGH] CWE-399 Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS Multiple DLSw Denial of Service Vulnerabilities in Cisco IOS Cisco IOS contains multiple vulnerabilities in the Data-link Switching (DLSw) feature that may result in a reload or memory leaks when processing specially crafted UDP or IP Protocol 91 packets. Cisco has released software updates that address these vulnerabilities. Workarounds are available to mitigate the effects of these vulnerabilities. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20080326-dlsw. Note: The March 26, 2008 publication includes five Security Advisories. The Advisories all affect Cisco's Internetwork Operating System (IOS). Each Advisory lists the releases that correct the vulnerability described in the Advisory, and the Advisories also d

CVE-2007-0199 [LOW] CWE-399 DLSw Vulnerability DLSw Vulnerability A vulnerability exists in the Data-link Switching (DLSw) feature in Cisco IOS where an invalid value in a DLSw message could result in a reload of the DLSw device. Successful exploitation of this vulnerability requires that an attacker be able to establish a DLSw connection to the device. There are workarounds available for this vulnerability, as detailed in the Workarounds section below. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070110-dlsw

CVE-2007-0199 DLSw Vulnerability CVE-2007-0199: DLSw Vulnerability A vulnerability exists in the Data-link Switching (DLSw) feature in Cisco IOS where an invalid value in a DLSw message could result in a reload of the DLSw device. Successful exploitation of this vulnerability requires that an attacker be able to establish a DLSw connection to the device. There are CWE: CWE-399, CWE-399 Bug IDs: CSCsf28840, CSCsf28840, CSCsf28840

CVE-2017-0199 Microsoft Excel - OLE Arbitrary Code Execution Microsoft Excel - OLE Arbitrary Code Execution --- Title: MS Office Excel (all versions) Arbitrary Code Execution Vulnerability Date: September 30th, 2017. Author: Eduardo Braun Prado Vendor Homepage: http://www.microsoft.com/ Software Link: https://products.office.com/ Version: 2007,2010,2013,2016 32/64 bits (x86 and x64) Tested on: Windows 10/8.1/8.0/7/Server 2012/Server 2008/Vista (X86 and x64) CVE: 2017-0199 Description: MS Excel contains a remote code execution vulnerability upon processing OLE objects. Although this is a different issue from the MS Word HTA execution vulnerability, it has been patched together, 'silently'. By performing some tests from the Word HTA PoC posted on exploit-db[dot]com, it´s possible to exploit it through Excel too, however the target would ne