Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.1
CVSSv2

CVE-2010-0577

Published: 25/03/2010 Updated: 17/08/2017
CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6
VMScore: 632
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C
Subscribe to Cisco

Vulnerability Summary

Cisco IOS 12.2 up to and including 12.4, when certain PMTUD, SNAT, or window-size configurations are used, allows remote malicious users to cause a denial of service (infinite loop, and device reload or hang) via a TCP segment with crafted options, aka Bug ID CSCsz75186.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios 12.2by

cisco ios 12.2bz

cisco ios 12.2xj

cisco ios 12.2xk

cisco ios 12.2yd

cisco ios 12.2yf

cisco ios 12.2yp

cisco ios 12.2yq

cisco ios 12.2zc

cisco ios 12.2zd

cisco ios 12.2zp

cisco ios 12.3

cisco ios 12.3jec

cisco ios 12.3jed

cisco ios 12.3xc

cisco ios 12.3xd

cisco ios 12.3xl

cisco ios 12.3xq

cisco ios 12.3xz

cisco ios 12.3ya

cisco ios 12.3yd

cisco ios 12.3ym

cisco ios 12.3yq

cisco ios 12.4

cisco ios 12.4gc

cisco ios 12.4jmb

cisco ios 12.4jx

cisco ios 12.4xb

cisco ios 12.4xc

cisco ios 12.4xl

cisco ios 12.4xm

cisco ios 12.4xy

cisco ios 12.4xz

cisco ios 12.2cx

cisco ios 12.2cy

cisco ios 12.2xl

cisco ios 12.2xm

cisco ios 12.2yg

cisco ios 12.2yh

cisco ios 12.2yr

cisco ios 12.2yt

cisco ios 12.2ze

cisco ios 12.2zf

cisco ios 12.3b

cisco ios 12.3bc

cisco ios 12.3jk

cisco ios 12.3jl

cisco ios 12.3jx

cisco ios 12.3xe

cisco ios 12.3xf

cisco ios 12.3xr

cisco ios 12.3xs

cisco ios 12.3yf

cisco ios 12.3yg

cisco ios 12.3ys

cisco ios 12.3yt

cisco ios 12.4ja

cisco ios 12.4jda

cisco ios 12.4md

cisco ios 12.4mda

cisco ios 12.4xd

cisco ios 12.4xe

cisco ios 12.4xn

cisco ios 12.4xp

cisco ios 12.4ya

cisco ios 12.4yb

cisco ios 12.2bc

cisco ios 12.2bx

cisco ios 12.2mc

cisco ios 12.2t

cisco ios 12.2tpc

cisco ios 12.2ya

cisco ios 12.2yb

cisco ios 12.2ym

cisco ios 12.2yn

cisco ios 12.2yy

cisco ios 12.2zb

cisco ios 12.2zj

cisco ios 12.2zl

cisco ios 12.3jea

cisco ios 12.3jeb

cisco ios 12.3xa

cisco ios 12.3xb

cisco ios 12.3xj

cisco ios 12.3xk

cisco ios 12.3xx

cisco ios 12.3xy

cisco ios 12.3yj

cisco ios 12.3yk

cisco ios 12.3yz

cisco ios 12.3za

cisco ios 12.4jk

cisco ios 12.4jl

cisco ios 12.4jma

cisco ios 12.4t

cisco ios 12.4xa

cisco ios 12.4xj

cisco ios 12.4xk

cisco ios 12.4xt

cisco ios 12.4xv

cisco ios 12.4xw

cisco ios 12.4yg

cisco ios 12.2b

cisco ios 12.2cz

cisco ios 12.2jx

cisco ios 12.2xr

cisco ios 12.2xw

cisco ios 12.2yj

cisco ios 12.2yl

cisco ios 12.2yu

cisco ios 12.2yv

cisco ios 12.2yw

cisco ios 12.2zg

cisco ios 12.2zh

cisco ios 12.3bw

cisco ios 12.3ja

cisco ios 12.3t

cisco ios 12.3tpc

cisco ios 12.3xg

cisco ios 12.3xi

cisco ios 12.3xu

cisco ios 12.3xw

cisco ios 12.3yh

cisco ios 12.3yi

cisco ios 12.3yu

cisco ios 12.3yx

cisco ios 12.4jdc

cisco ios 12.4jdd

cisco ios 12.4mr

cisco ios 12.4sw

cisco ios 12.4xf

cisco ios 12.4xg

cisco ios 12.4xq

cisco ios 12.4xr

cisco ios 12.4yd

cisco ios 12.4ye

Vendor Advisories

Cisco: Cisco IOS Software Crafted TCP Packet Denial of Service Vulnerability
Cisco IOS® Software is affected by a denial of service vulnerability that may allow a remote unauthenticated attacker to cause an affected device to reload or hang The vulnerability may be triggered by a TCP segment containing crafted TCP options that is received during the TCP session establishment phase In addition to specific, crafted TCP opt ...

References

CWE-399http://www.cisco.com/en/US/products/products_security_advisory09186a0080b20f34.shtmlhttp://osvdb.org/63178http://www.vupen.com/english/advisories/2010/0703http://www.securitytracker.com/id?1023743http://secunia.com/advisories/39078http://www.securityfocus.com/bid/38930https://exchange.xforce.ibmcloud.com/vulnerabilities/57129https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20100324-tcp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook