CVE-2010-2824 — HIGH (7.8) — White Hats Nepal

Q: How severe is CVE-2010-2824?

CVE-2010-2824 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2010-2824?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ace Module, Cisco Catalyst 6500, Cisco Catalyst 7600.

Vulnerability Description

Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.

CVSS Score

7.8

HIGH

AV:N/AC:L/Au:N/C:N/I:N/A:C

Confidentiality

NONE

Integrity

NONE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Cisco	Ace Module	<= a2\(3.1.0\)
Cisco	Catalyst 6500	All versions
Cisco	Catalyst 7600	All versions

References

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.sVendor Advisory
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.sVendor Advisory

FAQ

What is CVE-2010-2824?

CVE-2010-2824 is a vulnerability with a CVSS score of 7.8 (HIGH). Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switche...

How severe is CVE-2010-2824?

CVE-2010-2824 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-2824?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ace Module, Cisco Catalyst 6500, Cisco Catalyst 7600.