Lucene search

[email protected]CVE-2006-4194

HistoryAug 17, 2006 - 1:04 a.m.

CVE-2006-4194

2006-08-1701:04:00

[email protected]

web.nvd.nist.gov

cisco

pix 500

security

appliances

vulnerability

udp

sip

cve-2006-4194

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

88.2%

JSON

Unspecified vulnerability in Cisco PIX 500 Series Security Appliances allows remote attackers to send arbitrary UDP packets to intranet devices via unspecified vectors involving Session Initiation Protocol (SIP) fixup commands, a different issue than CVE-2006-4032. NOTE: the vendor, after working with the researcher, has been unable to reproduce the issue

Affected configurations

NVD

Node

ciscopix_firewall_501

ciscopix_firewall_506

ciscopix_firewall_515

ciscopix_firewall_515e

ciscopix_firewall_520

ciscopix_firewall_525

ciscopix_firewall_535

ciscopix_firewall_softwareMatch6.3

CPENameOperatorVersion
cisco:pix_firewall_501cisco pix firewall 501eq*
cisco:pix_firewall_506cisco pix firewall 506eq*
cisco:pix_firewall_515cisco pix firewall 515eq*
cisco:pix_firewall_515ecisco pix firewall 515eeq*
cisco:pix_firewall_520cisco pix firewall 520eq*
cisco:pix_firewall_525cisco pix firewall 525eq*
cisco:pix_firewall_535cisco pix firewall 535eq*
cisco:pix_firewall_softwarecisco pix firewall softwareeq6.3

CPE	Name	Operator	Version
cisco:pix_firewall_501	cisco pix firewall 501	eq	*
cisco:pix_firewall_506	cisco pix firewall 506	eq	*
cisco:pix_firewall_515	cisco pix firewall 515	eq	*
cisco:pix_firewall_515e	cisco pix firewall 515e	eq	*
cisco:pix_firewall_520	cisco pix firewall 520	eq	*
cisco:pix_firewall_525	cisco pix firewall 525	eq	*
cisco:pix_firewall_535	cisco pix firewall 535	eq	*
cisco:pix_firewall_software	cisco pix firewall software	eq	6.3

References

searchsecurity.techtarget.com/originalContent/0%2C289142%2Csid14_gci1207450%2C00.html

www.cisco.com/en/US/products/hw/vpndevc/ps2030/tsd_products_security_response09186a008070d33b.html

www.idoel.smilejogja.com/2006/08/14/blinded-by-the-glare-of-facial-piercings-at-black-hat-or-the-one-that-got-away/

www.networkworld.com/news/2006/080406-black-hat-unpatched-flaw-revealed.html?t5

www.osvdb.org/29781

www.securityfocus.com/bid/19536

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.018 Low

EPSS

Percentile

88.2%

JSON

Related for CVE-2006-4194

nvd2 cvelist2 cve1