Vulnerability Description
The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.7(3)S10 allows remote attackers to cause a denial of service (device crash) via a malformed session attribute, aka Bug ID CSCsk40030.
CVSS Score
7.8
HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Pgw 2200 Softswitch | 9.7\(3\)s |
Related Weaknesses (CWE)
References
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b2c519.sPatchVendor Advisory
- http://www.securityfocus.com/bid/40121
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080b2c519.sPatchVendor Advisory
- http://www.securityfocus.com/bid/40121
FAQ
What is CVE-2010-0603?
CVE-2010-0603 is a vulnerability with a CVSS score of 7.8 (HIGH). The SIP implementation on the Cisco PGW 2200 Softswitch with software before 9.7(3)S10 allows remote attackers to cause a denial of service (device crash) via a malformed session attribute, aka Bug ID...
How severe is CVE-2010-0603?
CVE-2010-0603 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-0603?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Pgw 2200 Softswitch.