Vulnerability Details : CVE-2011-3279
The provider-edge MPLS NAT implementation in Cisco IOS 12.1 through 12.4 and 15.0 through 15.1, and IOS XE 3.1.xSG, allows remote attackers to cause a denial of service (device reload) via a malformed SIP packet to UDP port 5060, aka Bug ID CSCti98219.
Vulnerability category: Denial of service
Exploit prediction scoring system (EPSS) score for CVE-2011-3279
Probability of exploitation activity in the next 30 days: 0.56%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 75 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2011-3279
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2011-3279
-
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b95d4d.shtml
Cisco IOS Software Network Address Translation Vulnerabilities - CiscoVendor Advisory
-
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A13781
Repository / Oval RepositoryThird Party Advisory
-
http://tools.cisco.com/security/center/viewAlert.x?alertId=24121
Cisco IOS Software MPLS Packet Network Address Translation Denial of Service VulnerabilityVendor Advisory
Products affected by CVE-2011-3279
- cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:3.1.1sg:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:3.1.0sg:*:*:*:*:*:*:*