Podatność CVE-2013-1241
Publikacja: 2013-05-08

Opis:
The ISM module in Cisco IOS on ISR G2 routers does not properly handle authentication-header packets, which allows remote authenticated users to cause a denial of service (module reload) via a series of malformed packets, aka Bug ID CSCub92025.

Typ:

CWE-287

 (Improper Authentication)

CVSS2 => (AV:N/AC:M/Au:S/C:N/I:N/A:C)

Ogólna skala CVSS
Znaczenie
Łatwość wykorzystania
6.3/10
6.9/10
6.8/10
Wymagany dostęp
Złożoność ataku
Autoryzacja
Zdalny
Średnia
Jednorazowa
Wpływ na poufność
Wpływ na integralność
Wpływ na dostępność
Brak
Brak
Pełny
Affected software
Cisco -> 886 integrated services router 
Cisco -> 886va-w integrated services router 
Cisco -> 1921 integrated services router 
Cisco -> 886va integrated services router 
Cisco -> 1941 integrated services router 
Cisco -> 887 integrated services router 
Cisco -> 1941w integrated services router 
Cisco -> 887v integrated services router 
Cisco -> 2901 integrated services router 
Cisco -> 887va-w integrated services router 
Cisco -> 2911 integrated services router 
Cisco -> 887va integrated services router 
Cisco -> 2921 integrated services router 
Cisco -> 888 integrated services router 
Cisco -> 2951 integrated services router 
Cisco -> 891 integrated services router 
Cisco -> 3925 integrated services router 
Cisco -> 892 integrated services router 
Cisco -> 3925e integrated services router 
Cisco -> C881w integrated services router 
Cisco -> 3945 integrated services router 
Cisco -> IOS 
Cisco -> 3945e integrated services router 
Cisco -> 861 integrated services router 
Cisco -> 867 integrated services router 
Cisco -> 880 3g integrated services router 
Cisco -> 881 integrated services router 

 Referencje:
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1241
Copyright 2024, cxsecurity.com

 

Back to Top