CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
90.5%
Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) before 3.1.6, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (device instability) via βSSH credentials that attempt to change the authentication method,β aka Bug ID CSCsm14239.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | service_control_engine | * | cpe:2.3:a:cisco:service_control_engine:*:*:*:*:*:*:*:* |
icon-labs | iconfidant_ssh | * | cpe:2.3:a:icon-labs:iconfidant_ssh:*:*:*:*:*:*:*:* |
secunia.com/advisories/30316
secunia.com/advisories/30590
securitytracker.com/id?1020074
www.cisco.com/en/US/products/products_security_advisory09186a008099bf65.shtml
www.icon-labs.com/news/read.asp?newsID=77
www.kb.cert.org/vuls/id/626979
www.securityfocus.com/bid/29316
www.securityfocus.com/bid/29609
www.vupen.com/english/advisories/2008/1604/references
www.vupen.com/english/advisories/2008/1774/references
exchange.xforce.ibmcloud.com/vulnerabilities/42567