Code injection

2013-04-1110:55:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

49.5%

JSON

Cisco IOS XE 3.2 through 3.4 before 3.4.5S, and 3.5 through 3.7 before 3.7.1S, on 1000 series Aggregation Services Routers (ASR), when VRF-aware NAT and SIP ALG are enabled, allows remote attackers to cause a denial of service (card reload) by sending many SIP packets, aka Bug ID CSCuc65609.

CPENameOperatorVersion
ios_xeeq3.2.115
ios_xeeq3.2.1115
ios_xeeq3.2.2115
ios_xeeq3.3.115
ios_xeeq3.3.1115
ios_xeeq3.3.2115
ios_xeeq3.4.0-as
ios_xeeq3.4.115
ios_xeeq3.4.1115
ios_xeeq3.4.2115

Name	Operator	Version
ios_xe	eq	3.2.115
ios_xe	eq	3.2.1115
ios_xe	eq	3.2.2115
ios_xe	eq	3.3.115
ios_xe	eq	3.3.1115
ios_xe	eq	3.3.2115
ios_xe	eq	3.4.0-as
ios_xe	eq	3.4.115
ios_xe	eq	3.4.1115
ios_xe	eq	3.4.2115