Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
BID:40117
Info
Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
| Bugtraq ID: | 40117 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2010-0601 |
| Remote: | Yes |
| Local: | No |
| Published: | May 12 2010 12:00AM |
| Updated: | May 12 2010 12:00AM |
| Credit: | Cisco |
| Vulnerable: |
Cisco PGW2200 Softswitch 9.7(3)S9 Cisco PGW2200 Softswitch 9.7(3)S10 Cisco PGW2200 Softswitch 9.7(3)P9 Cisco PGW2200 Softswitch 9.7(3)P11 Cisco PGW2200 Softswitch 9.7(3) Cisco PGW2200 Softswitch |
| Not Vulnerable: |
Cisco PGW2200 Softswitch 9.8(1)S5 Cisco PGW2200 Softswitch 9.7(3)S11 |
Discussion
Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
Cisco PGW 2200 Softswitch is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to crash, effectively denying service to a legitimate user. This issue is tracked by Cisco BugID CSCsl39126.
NOTE: This issue was previously documented in BID 40110 (Cisco PGW 2200 Softswitch Multiple Denial of Service Vulnerabilities), but has been given its own record to better document it.
Cisco PGW 2200 Softswitch is prone to a remote denial-of-service vulnerability.
An attacker can exploit this issue to cause an affected device to crash, effectively denying service to a legitimate user. This issue is tracked by Cisco BugID CSCsl39126.
NOTE: This issue was previously documented in BID 40110 (Cisco PGW 2200 Softswitch Multiple Denial of Service Vulnerabilities), but has been given its own record to better document it.
Exploit / POC
Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
Attackers can use readily available network utilities to exploit this issue.
Attackers can use readily available network utilities to exploit this issue.
Solution / Fix
Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
Solution:
Vendor updates are available. Please see the referenced advisory for further information.
Solution:
Vendor updates are available. Please see the referenced advisory for further information.
References
Cisco PGW 2200 Softswitch MGCP Packets Denial of Service Vulnerability
References:
References:
- Cisco Homepage (Cisco )
- Cisco Security Advisory: Multiple vulnerabilities in Cisco PGW Softswitch (Cisco Systems Product Security Incident Response Team
) - Multiple vulnerabilities in Cisco PGW Softswitch (Cisco)