CVE-2009-2045

2009-06-2501:30:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

video surveillance

stream manager

firmware

denial of service

vulnerability

cisco video surveillance services platforms

cisco video surveillance integrated services platforms

udp packet

port 37000

xvcrman process

cve-2009-2045

nvd

6.9 Medium

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.006 Low

EPSS

Percentile

77.5%

JSON

The Cisco Video Surveillance Stream Manager firmware before 5.3, as used on Cisco Video Surveillance Services Platforms and Video Surveillance Integrated Services Platforms, allows remote attackers to cause a denial of service (reboot) via a malformed payload in a UDP packet to port 37000, related to the xvcrman process, aka Bug ID CSCsj47924.

CPENameOperatorVersion
cisco:video_surveillance_stream_managercisco video surveillance stream managerle5.2
cisco:video_surveillance_stream_managercisco video surveillance stream managereq5.0
cisco:video_surveillance_stream_managercisco video surveillance stream managereq5.1

CPE	Name	Operator	Version
cisco:video_surveillance_stream_manager	cisco video surveillance stream manager	le	5.2
cisco:video_surveillance_stream_manager	cisco video surveillance stream manager	eq	5.0
cisco:video_surveillance_stream_manager	cisco video surveillance stream manager	eq	5.1