Vulnerabilities > CVE-2009-2045 - Unspecified vulnerability in Cisco Video Surveillance Stream Manager 5.0/5.1

CVSS 7.8 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

low complexity

cisco

NVD

Published: 2009-06-25

Updated: 2009-07-02

Summary

The Cisco Video Surveillance Stream Manager firmware before 5.3, as used on Cisco Video Surveillance Services Platforms and Video Surveillance Integrated Services Platforms, allows remote attackers to cause a denial of service (reboot) via a malformed payload in a UDP packet to port 37000, related to the xvcrman process, aka Bug ID CSCsj47924.

Vulnerable Configurations

Part	Description	Count
Application	Cisco Cisco Video Surveillance Stream Manager 5.0 Cisco Video Surveillance Stream Manager 5.1 Cisco Video Surveillance Stream Manager *	3
Hardware	Cisco Cisco Video Surveillance Integrated Services Platform *	1

References

http://www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080ad1002.html
http://www.cisco.com/en/US/products/products_security_advisory09186a0080ad0f8f.shtml
http://www.securitytracker.com/id?1022446