CVE-2010-1567

2010-05-1420:30:01

CWE-20

[email protected]

web.nvd.nist.gov

cisco

pgw 2200

softswitch

sip

implementation

denial of service

vulnerability

remote attackers

device crash

bug id

cscsz13590

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.8%

JSON

The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.8(1)S5 allows remote attackers to cause a denial of service (device crash) via a malformed header, aka Bug ID CSCsz13590.

Affected configurations

NVD

Node

ciscopgw_2200_softswitchRange≤9.8\(1\)

ciscopgw_2200_softswitchMatch9.6\(1\)

ciscopgw_2200_softswitchMatch9.7\(3\)

CPENameOperatorVersion
cisco:pgw_2200_softswitchcisco pgw 2200 softswitchle9.8\(1\)
cisco:pgw_2200_softswitchcisco pgw 2200 softswitcheq9.6\(1\)
cisco:pgw_2200_softswitchcisco pgw 2200 softswitcheq9.7\(3\)

CPE	Name	Operator	Version
cisco:pgw_2200_softswitch	cisco pgw 2200 softswitch	le	9.8\(1\)
cisco:pgw_2200_softswitch	cisco pgw 2200 softswitch	eq	9.6\(1\)
cisco:pgw_2200_softswitch	cisco pgw 2200 softswitch	eq	9.7\(3\)