CVE-2016-1327

Published: 09/03/2016 Updated: 03/12/2016

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the web server on Cisco DPC2203 and EPC2203 devices with firmware r1_customer_image allows remote malicious users to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCuv05935.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco dpc2203 cable modem firmware r1 customer image base
cisco epc2203 cable modem firmware r1 customer image base

A vulnerability in the web server used in the Cisco Cable Modem with Digital Voice Model DPC2203 could allow an unauthenticated, remote attacker to exploit a buffer overflow and cause arbitrary code execution The vulnerability is due to improper input validation for HTTP requests An attacker could exploit this vulnerability by sending a crafted ...

CWE-119 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-cmre http://www.securityfocus.com/bid/84279 http://www.securitytracker.com/id/1035235 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160309-cmre

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2016-1327

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect