Lucene search

MitreCVE-2004-0054

HistoryFeb 17, 2004 - 5:00 a.m.

CVE-2004-0054

2004-02-1705:00:00

mitre

web.nvd.nist.gov

cisco

ios

h.323

protocol

vulnerabilities

niscc

ouspg

denial of service

code execution

cve-2004-0054

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.056

Percentile

93.3%

JSON

Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.

Affected configurations

Nvd

Node

ciscoiosMatch11.3t

ciscoiosMatch12.0

ciscoiosMatch12.0s

ciscoiosMatch12.0t

ciscoiosMatch12.1

ciscoiosMatch12.1e

ciscoiosMatch12.1t

ciscoiosMatch12.2

ciscoiosMatch12.2s

ciscoiosMatch12.2t

VendorProductVersionCPE
ciscoios11.3tcpe:2.3:o:cisco:ios:11.3t:*:*:*:*:*:*:*
ciscoios12.0cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
ciscoios12.0scpe:2.3:o:cisco:ios:12.0s:*:*:*:*:*:*:*
ciscoios12.0tcpe:2.3:o:cisco:ios:12.0t:*:*:*:*:*:*:*
ciscoios12.1cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*
ciscoios12.1ecpe:2.3:o:cisco:ios:12.1e:*:*:*:*:*:*:*
ciscoios12.1tcpe:2.3:o:cisco:ios:12.1t:*:*:*:*:*:*:*
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios12.2scpe:2.3:o:cisco:ios:12.2s:*:*:*:*:*:*:*
ciscoios12.2tcpe:2.3:o:cisco:ios:12.2t:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	11.3t	cpe:2.3:o:cisco:ios:11.3t:::::::*
cisco	ios	12.0	cpe:2.3:o:cisco:ios:12.0:::::::*
cisco	ios	12.0s	cpe:2.3:o:cisco:ios:12.0s:::::::*
cisco	ios	12.0t	cpe:2.3:o:cisco:ios:12.0t:::::::*
cisco	ios	12.1	cpe:2.3:o:cisco:ios:12.1:::::::*
cisco	ios	12.1e	cpe:2.3:o:cisco:ios:12.1e:::::::*
cisco	ios	12.1t	cpe:2.3:o:cisco:ios:12.1t:::::::*
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	12.2s	cpe:2.3:o:cisco:ios:12.2s:::::::*
cisco	ios	12.2t	cpe:2.3:o:cisco:ios:12.2t:::::::*

References

www.cert.org/advisories/CA-2004-01.html

www.cisco.com/warp/public/707/cisco-sa-20040113-h323.shtml

www.kb.cert.org/vuls/id/749342

www.securityfocus.com/bid/9406

www.securitytracker.com/id?1008685

www.uniras.gov.uk/vuls/2004/006489/h323.htm

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4884

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.6

Confidence

High

EPSS

0.056

Percentile

93.3%

JSON

Related for CVE-2004-0054