CVE-2010-0137

2010-01-2122:30:00

[email protected]

web.nvd.nist.gov

cve-2010-0137

cisco

ios xr

ssh

denial of service

vulnerability

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

6.7 Medium

AI Score

Confidence

High

0.02 Low

EPSS

Percentile

88.9%

JSON

Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 through 3.7.0 allows remote attackers to cause a denial of service (process crash and memory consumption) via a crafted SSH2 packet, aka Bug ID CSCsu10574.

Affected configurations

NVD

Node

ciscoios_xrMatch3.4.1

ciscoios_xrMatch3.4.2

ciscoios_xrMatch3.4.3

ciscoios_xrMatch3.5.2

ciscoios_xrMatch3.5.3

ciscoios_xrMatch3.5.4

ciscoios_xrMatch3.6.0

ciscoios_xrMatch3.6.1

ciscoios_xrMatch3.7.0

CPENameOperatorVersion
cisco:ios_xrcisco ios xreq3.4.1
cisco:ios_xrcisco ios xreq3.4.2
cisco:ios_xrcisco ios xreq3.4.3
cisco:ios_xrcisco ios xreq3.5.2
cisco:ios_xrcisco ios xreq3.5.3
cisco:ios_xrcisco ios xreq3.5.4
cisco:ios_xrcisco ios xreq3.6.0
cisco:ios_xrcisco ios xreq3.6.1
cisco:ios_xrcisco ios xreq3.7.0

CPE	Name	Operator	Version
cisco:ios_xr	cisco ios xr	eq	3.4.1
cisco:ios_xr	cisco ios xr	eq	3.4.2
cisco:ios_xr	cisco ios xr	eq	3.4.3
cisco:ios_xr	cisco ios xr	eq	3.5.2
cisco:ios_xr	cisco ios xr	eq	3.5.3
cisco:ios_xr	cisco ios xr	eq	3.5.4
cisco:ios_xr	cisco ios xr	eq	3.6.0
cisco:ios_xr	cisco ios xr	eq	3.6.1
cisco:ios_xr	cisco ios xr	eq	3.7.0