Strix
26.1K

CVE-2011-3276

UnknownEPSS 1.77%

Last modified

CVE-2011-3276 is a vulnerability of currently unknown severity. Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload or hang) by sending crafted SIP packets to TCP port 5060, aka Bug ID CSCso02147.. EPSS estimates a 1.77% chance of exploitation in the next 30 days.

Description

Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload or hang) by sending crafted SIP packets to TCP port 5060, aka Bug ID CSCso02147.

Metrics

EPSS Probability
1.77%

75.3th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
CiscoIos Xe3.1.0sg
CiscoIos Xe3.1.1sg
CiscoIos12.1
CiscoIos12.1e
CiscoIos12.2
CiscoIos12.2b
CiscoIos12.2bc
CiscoIos12.2bx
CiscoIos12.2cx
CiscoIos12.2cz
CiscoIos12.2ew
CiscoIos12.2ewa
CiscoIos12.2ex
CiscoIos12.2ey
CiscoIos12.2ez
CiscoIos12.2fx
CiscoIos12.2fy
CiscoIos12.2fz
CiscoIos12.2ira
CiscoIos12.2irb
CiscoIos12.2irc
CiscoIos12.2ird
CiscoIos12.2ire
CiscoIos12.2irf
CiscoIos12.2ixa
CiscoIos12.2ixb
CiscoIos12.2ixc
CiscoIos12.2ixd
CiscoIos12.2ixe
CiscoIos12.2ixf
CiscoIos12.2ixg
CiscoIos12.2ixh
CiscoIos12.2mc
CiscoIos12.2mra
CiscoIos12.2mrb
CiscoIos12.2s
CiscoIos12.2sb
CiscoIos12.2sbc
CiscoIos12.2sca
CiscoIos12.2scb
CiscoIos12.2scc
CiscoIos12.2scd
CiscoIos12.2sce
CiscoIos12.2se
CiscoIos12.2sea
CiscoIos12.2seb
CiscoIos12.2sec
CiscoIos12.2sed
CiscoIos12.2see
CiscoIos12.2sef

Showing 50 of 189 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2011-3276?
Unspecified vulnerability in the NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload or hang) by sending crafted SIP packets to TCP port 5060, aka Bug ID CSCso02147.
How severe is CVE-2011-3276?
Severity scoring for CVE-2011-3276 is pending analysis. The EPSS model estimates a 1.77% probability of exploitation in the next 30 days.
How do I fix CVE-2011-3276?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2011-3276?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST