CVE-2004-0054 — Cisco IOS vulnerability

4 documents3 sources

Severity

7.5HIGHNVD

EPSS

8.2%

top 7.77%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco IOS

Timeline

PublishedFeb 17

Latest updateApr 29

Description

Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T through 12.2T allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDcisco/ios10 versions+9

Patches

Patch: www.cert.org ↗Patch: www.cisco.com ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-22qh-55gx-68jh: Multiple vulnerabilities in the H↗2022-04-29

▶

📋Vendor Advisories

Cisco

Vulnerabilities in H.323 Message Processing↗2004-01-13

▶

Cisco

Vulnerabilities in H.323 Message Processing↗

▶