Vulnerability CVE-2002-2037
Published: 2002-12-31   Modified: 2012-02-12

Description:
The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
5/10
2.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
Partial
None
Affected software
Cisco -> BAMS 
Cisco -> Pgw 2200 
Cisco -> Sc2200 
Cisco -> Vsc3000 
Cisco -> VSPT 

 References:
http://www.securityfocus.com/bid/3897
http://www.iss.net/security_center/static/7912.php
http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtml
Copyright 2024, cxsecurity.com

 

Back to Top