CVE-2010-0581

2010-03-2521:00:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

ios

vulnerability

remote code execution

sip

cve-2010-0581

nvd

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.023 Low

EPSS

Percentile

89.7%

JSON

Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz89904, the “SIP Packet Parsing Arbitrary Code Execution Vulnerability.”

CPENameOperatorVersion
cisco:ioscisco ioseq12.3ym
cisco:ioscisco ioseq12.3yq
cisco:ioscisco ioseq12.3xr
cisco:ioscisco ioseq12.4t
cisco:ioscisco ioseq12.3xg
cisco:ioscisco ioseq12.3xd
cisco:ioscisco ioseq12.3xw
cisco:ioscisco ioseq12.4mr
cisco:ioscisco ioseq12.4xt
cisco:ioscisco ioseq12.3xi

CPE	Name	Operator	Version
cisco:ios	cisco ios	eq	12.3ym
cisco:ios	cisco ios	eq	12.3yq
cisco:ios	cisco ios	eq	12.3xr
cisco:ios	cisco ios	eq	12.4t
cisco:ios	cisco ios	eq	12.3xg
cisco:ios	cisco ios	eq	12.3xd
cisco:ios	cisco ios	eq	12.3xw
cisco:ios	cisco ios	eq	12.4mr
cisco:ios	cisco ios	eq	12.4xt
cisco:ios	cisco ios	eq	12.3xi