CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
83.7%
The SSLVPN feature in Cisco IOS 12.3 through 12.4 allows remote attackers to cause a denial of service (device reload or hang) via a crafted HTTPS packet.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | ios | 12.3jec | cpe:/o:cisco:ios:12.3jec::: |
cisco | ios | 12.3yk | cpe:/o:cisco:ios:12.3yk::: |
cisco | ios | 12.3xa | cpe:/o:cisco:ios:12.3xa::: |
cisco | ios | 12.3tpc | cpe:/o:cisco:ios:12.3tpc::: |
cisco | ios | 12.4ja | cpe:/o:cisco:ios:12.4ja::: |
cisco | ios | 12.3xl | cpe:/o:cisco:ios:12.3xl::: |
cisco | ios | 12.3xk | cpe:/o:cisco:ios:12.3xk::: |
cisco | ios | 12.3jk | cpe:/o:cisco:ios:12.3jk::: |
cisco | ios | 12.4ya | cpe:/o:cisco:ios:12.4ya::: |
cisco | ios | 12.3xj | cpe:/o:cisco:ios:12.3xj::: |
secunia.com/advisories/34438
securitytracker.com/id?1021896
www.cisco.com/en/US/products/products_security_advisory09186a0080a90424.shtml
www.cisco.com/en/US/products/products_security_advisory09186a0080a90469.shtml
www.securityfocus.com/bid/34239
www.vupen.com/english/advisories/2009/0851
exchange.xforce.ibmcloud.com/vulnerabilities/49425
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6919