Vulnerability CVE-2014-3331
Published: 2014-08-20

Description:
The Session Manager component in Packet Data Network Gateway (aka PGW) in Cisco ASR 5000 Series Software 11.0, 12.0, 12.1, 12.2, 14.0, 15.0, 16.x through 16.1.2, and 17.0 allows remote attackers to cause a denial of service (process crash) via a crafted TCP packet, aka Bug ID CSCuo21914.

CVSS2 => (AV:N/AC:M/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial
Affected software
Cisco -> Asr 5000 series software 

 References:
http://secunia.com/advisories/60706
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-3331
http://tools.cisco.com/security/center/viewAlert.x?alertId=35346
http://www.securityfocus.com/bid/69281
http://www.securitytracker.com/id/1030747
http://xforce.iss.net/xforce/xfdb/95357
Copyright 2024, cxsecurity.com

 

Back to Top