Design/Logic Flaw

2015-08-3120:59:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.0%

JSON

Cisco IOS XE 2.1.0 through 2.4.3 and 2.5.0 on ASR 1000 devices, when NAT Application Layer Gateway is used, allows remote attackers to cause a denial of service (Embedded Services Processor crash) via a crafted SIP packet, aka Bug IDs CSCta74749 and CSCta77008.

CPENameOperatorVersion
ios_xeeq2.1.0
ios_xeeq2.1.1
ios_xeeq2.1.2
ios_xeeq2.1.3
ios_xeeq2.2.1
ios_xeeq2.2.2
ios_xeeq2.2.3
ios_xeeq2.3.0
ios_xeeq2.3.116
ios_xeeq2.3.1116