Vulnerability Description
The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Bams | All versions |
| Cisco | Pgw 2200 | <= 9.1 |
| Cisco | Sc2200 | <= 7.4 |
| Cisco | Vsc3000 | <= 9.1 |
| Cisco | Vspt | All versions |
References
- http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/7912.phpPatch
- http://www.securityfocus.com/bid/3897Patch
- http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/7912.phpPatch
- http://www.securityfocus.com/bid/3897Patch
FAQ
What is CVE-2002-2037?
CVE-2002-2037 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provi...
How severe is CVE-2002-2037?
CVE-2002-2037 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2037?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Bams, Cisco Pgw 2200, Cisco Sc2200, Cisco Vsc3000, Cisco Vspt.