PT-2017-17183 · Cisco · Cisco Asr 5000 Series Aggregation Services Routers

Publicado

2017-07-25

Atualizado

2017-08-10

CVE-2017-6612

CVSS v3.1

8.6

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N

Name of the Vulnerable Software and Affected Versions Cisco ASR 5000 Series Aggregation Services Routers versions 17.3.9.62033 through 21.1.2

Description A vulnerability in the gateway GPRS support node (GGSN) could allow an unauthenticated, remote attacker to redirect HTTP traffic sent to an affected device.

Recommendations For versions 17.3.9.62033 through 21.1.2, update to a fixed version to prevent HTTP traffic redirection by an unauthenticated, remote attacker. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-119

Identificadores relacionados

CVE-2017-6612

Produtos afetados

Cisco Asr 5000 Series Aggregation Services Routers

PT-2017-17183 · Cisco · Cisco Asr 5000 Series Aggregation Services Routers

CVE-2017-6612

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5