6.6 Medium
AI Score
Confidence
Low
5.1 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
0.017 Low
EPSS
Percentile
87.7%
Unspecified vulnerability in the Multicast Virtual Private Network (MVPN) implementation in Cisco IOS 12.0, 12.2, 12.3, and 12.4 allows remote attackers to create โextra multicast states on the core routersโ via a crafted Multicast Distribution Tree (MDT) Data Join message.
CPE | Name | Operator | Version |
---|---|---|---|
cisco:cisco_ios | cisco cisco ios | eq | 12.3 |
cisco:cisco_ios | cisco cisco ios | eq | 12.4 |
cisco:ios | cisco ios | eq | 12.2 |
cisco:ios | cisco ios | eq | 12.0 |
secunia.com/advisories/29507
www.cisco.com/warp/public/707/cisco-sa-20080326-mvpn.shtml
www.securityfocus.com/bid/28464
www.securitytracker.com/id?1019715
www.us-cert.gov/cas/techalerts/TA08-087B.html
www.vupen.com/english/advisories/2008/1006/references
exchange.xforce.ibmcloud.com/vulnerabilities/41468
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5648