Lucene search

MitreCVE-2002-2037

HistoryJul 14, 2005 - 4:00 a.m.

CVE-2002-2037

2005-07-1404:00:00

mitre

web.nvd.nist.gov

cisco

mgc

sc2200

vsc3000

pgw 2200

bams

vspt

solaris

vulnerabilities

exploit

security patches

nvd

cve-2002-2037

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.002

Percentile

58.0%

JSON

The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.

Affected configurations

Nvd

Node

ciscobams

ciscopgw_2200Range≤9.1

ciscosc2200Range≤7.4

ciscovsc3000Range≤9.1

ciscovspt

VendorProductVersionCPE
ciscobams*cpe:2.3:a:cisco:bams:*:*:*:*:*:*:*:*
ciscopgw_2200*cpe:2.3:a:cisco:pgw_2200:*:*:*:*:*:*:*:*
ciscosc2200*cpe:2.3:a:cisco:sc2200:*:*:*:*:*:*:*:*
ciscovsc3000*cpe:2.3:a:cisco:vsc3000:*:*:*:*:*:*:*:*
ciscovspt*cpe:2.3:a:cisco:vspt:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	bams	*	cpe:2.3:a:cisco:bams::::::::
cisco	pgw_2200	*	cpe:2.3:a:cisco:pgw_2200::::::::
cisco	sc2200	*	cpe:2.3:a:cisco:sc2200::::::::
cisco	vsc3000	*	cpe:2.3:a:cisco:vsc3000::::::::
cisco	vspt	*	cpe:2.3:a:cisco:vspt::::::::

References

www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtml

www.iss.net/security_center/static/7912.php

www.securityfocus.com/bid/3897

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.6

Confidence

Low

EPSS

0.002

Percentile

58.0%

JSON

Related for CVE-2002-2037