CVE-2011-3277

2011-10-0323:55:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

ios

nat

vulnerability

cve-2011-3277

cisco ios 12.1

cisco ios 12.4

cisco ios 15.0

cisco ios 15.1

ios xe 3.1.xsg

denial of service

h.323

tcp port 1720

bug id cscth11006

nvd

7.3 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.002 Low

EPSS

Percentile

51.7%

JSON

Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload) by sending crafted H.323 packets to TCP port 1720, aka Bug ID CSCth11006.

CPENameOperatorVersion
cisco:ios_xecisco ios xeeq3.1.0sg
cisco:ios_xecisco ios xeeq3.1.1sg
cisco:ioscisco ioseq12.3yq
cisco:ioscisco ioseq12.3xr
cisco:ioscisco ioseq12.4t
cisco:ioscisco ioseq12.2sga
cisco:ioscisco ioseq12.3bc
cisco:ioscisco ioseq12.1e
cisco:ioscisco ioseq12.3ya
cisco:ioscisco ioseq12.2cz

CPE	Name	Operator	Version
cisco:ios_xe	cisco ios xe	eq	3.1.0sg
cisco:ios_xe	cisco ios xe	eq	3.1.1sg
cisco:ios	cisco ios	eq	12.3yq
cisco:ios	cisco ios	eq	12.3xr
cisco:ios	cisco ios	eq	12.4t
cisco:ios	cisco ios	eq	12.2sga
cisco:ios	cisco ios	eq	12.3bc
cisco:ios	cisco ios	eq	12.1e
cisco:ios	cisco ios	eq	12.3ya
cisco:ios	cisco ios	eq	12.2cz