Vulnerability Description
Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 11.3t |
References
- http://www.cert.org/advisories/CA-2004-01.htmlPatchThird Party AdvisoryUS Government Resource
- http://www.cisco.com/warp/public/707/cisco-sa-20040113-h323.shtmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/749342PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/9406
- http://www.securitytracker.com/id?1008685
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://www.cert.org/advisories/CA-2004-01.htmlPatchThird Party AdvisoryUS Government Resource
- http://www.cisco.com/warp/public/707/cisco-sa-20040113-h323.shtmlPatchVendor Advisory
- http://www.kb.cert.org/vuls/id/749342PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/9406
- http://www.securitytracker.com/id?1008685
- http://www.uniras.gov.uk/vuls/2004/006489/h323.htm
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2004-0054?
CVE-2004-0054 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated...
How severe is CVE-2004-0054?
CVE-2004-0054 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0054?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.