Strix
26.1K

CVE-2010-0578

UnknownEPSS 2.94%

Last modified

CVE-2010-0578 is a vulnerability of currently unknown severity. The IKE implementation in Cisco IOS 12.2 through 12.4 on Cisco 7200 and 7301 routers with VAM2+ allows remote attackers to cause a denial of service (device reload) via a malformed IKE packet, aka Bug ID CSCtb13491.. EPSS estimates a 2.94% chance of exploitation in the next 30 days.

Description

The IKE implementation in Cisco IOS 12.2 through 12.4 on Cisco 7200 and 7301 routers with VAM2+ allows remote attackers to cause a denial of service (device reload) via a malformed IKE packet, aka Bug ID CSCtb13491.

Metrics

EPSS Probability
2.94%

85.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoIos12.2sb
CiscoIos12.2sca
CiscoIos12.2scb
CiscoIos12.2scc
CiscoIos12.2sra
CiscoIos12.3t
CiscoIos12.3xe
CiscoIos12.3xj
CiscoIos12.3xr
CiscoIos12.3xu
CiscoIos12.3xw
CiscoIos12.3xx
CiscoIos12.3yf
CiscoIos12.3yg
CiscoIos12.3yk
CiscoIos12.3yq
CiscoIos12.3ys
CiscoIos12.3yu
CiscoIos12.3yx
CiscoIos12.3za
CiscoIos12.4
CiscoIos12.4gc
CiscoIos12.4ja
CiscoIos12.4jda
CiscoIos12.4jdc
CiscoIos12.4jdd
CiscoIos12.4jk
CiscoIos12.4jl
CiscoIos12.4jma
CiscoIos12.4jmb
CiscoIos12.4jx
CiscoIos12.4md
CiscoIos12.4mda
CiscoIos12.4mr
CiscoIos12.4sw
CiscoIos12.4t
CiscoIos12.4xa
CiscoIos12.4xb
CiscoIos12.4xc
CiscoIos12.4xd
CiscoIos12.4xe
CiscoIos12.4xf
CiscoIos12.4xg
CiscoIos12.4xj
CiscoIos12.4xk
CiscoIos12.4xl
CiscoIos12.4xm
CiscoIos12.4xn
CiscoIos12.4xp
CiscoIos12.4xq

Showing 50 of 61 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2010-0578?
The IKE implementation in Cisco IOS 12.2 through 12.4 on Cisco 7200 and 7301 routers with VAM2+ allows remote attackers to cause a denial of service (device reload) via a malformed IKE packet, aka Bug ID CSCtb13491.
How severe is CVE-2010-0578?
Severity scoring for CVE-2010-0578 is pending analysis. The EPSS model estimates a 2.94% probability of exploitation in the next 30 days.
How do I fix CVE-2010-0578?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2010-0578?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST