CVE-2007-4294

2007-08-0921:17:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

Low

EPSS

0.132

Percentile

95.6%

JSON

Unspecified vulnerability in Cisco Unified Communications Manager (CUCM) 5.0, 5.1, and 6.0, and IOS 12.0 through 12.4, allows remote attackers to execute arbitrary code via a malformed SIP packet, aka CSCsi80102.

Affected configurations

Nvd

Node

ciscoiosMatch12.0

ciscoiosMatch12.1

ciscoiosMatch12.2

ciscoiosMatch12.3

ciscoiosMatch12.4

AND

ciscounified_communications_managerMatch5.0

ciscounified_communications_managerMatch5.1

ciscounified_communications_managerMatch6.0

VendorProductVersionCPE
ciscoios12.0cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
ciscoios12.1cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios12.3cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*
ciscoios12.4cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*
ciscounified_communications_manager5.0cpe:2.3:a:cisco:unified_communications_manager:5.0:*:*:*:*:*:*:*
ciscounified_communications_manager5.1cpe:2.3:a:cisco:unified_communications_manager:5.1:*:*:*:*:*:*:*
ciscounified_communications_manager6.0cpe:2.3:a:cisco:unified_communications_manager:6.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.0	cpe:2.3:o:cisco:ios:12.0:::::::*
cisco	ios	12.1	cpe:2.3:o:cisco:ios:12.1:::::::*
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	12.3	cpe:2.3:o:cisco:ios:12.3:::::::*
cisco	ios	12.4	cpe:2.3:o:cisco:ios:12.4:::::::*
cisco	unified_communications_manager	5.0	cpe:2.3:a:cisco:unified_communications_manager:5.0:::::::*
cisco	unified_communications_manager	5.1	cpe:2.3:a:cisco:unified_communications_manager:5.1:::::::*
cisco	unified_communications_manager	6.0	cpe:2.3:a:cisco:unified_communications_manager:6.0:::::::*