Vulnerabilities > CVE-2002-2037 - Unspecified vulnerability in Cisco products

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

cisco

NVD

Published: 2002-12-31

Updated: 2008-09-05

Summary

The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Bams * Cisco PGW 2200 - Cisco PGW 2200 9.1 Cisco Sc2200 - Cisco Sc2200 7.4 Cisco Vsc3000 - Cisco Vsc3000 9.1 Cisco Vspt *	8

References

http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtml
http://www.iss.net/security_center/static/7912.php
http://www.securityfocus.com/bid/3897