CVE-2010-2824 (GCVE-0-2010-2824)

Vulnerability from cvelistv5 – Published: 2010-08-13 20:00 – Updated: 2024-09-16 18:14

Summary

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

http://www.cisco.com/en/US/products/products_secu…

vendor-advisoryx_refsource_CISCO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T02:46:48.534Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20100811 Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2010-08-13T20:00:00Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "20100811 Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2010-2824",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20100811 Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2010-2824",
    "datePublished": "2010-08-13T20:00:00Z",
    "dateReserved": "2010-07-23T00:00:00Z",
    "dateUpdated": "2024-09-16T18:14:27.172Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"a2\\\\(3.1.0\\\\)\", \"matchCriteriaId\": \"152B69CD-BCC3-42FF-97AC-072BFDA0AF1A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"a2\\\\(3.1.6\\\\)\", \"matchCriteriaId\": \"4CD3DD6A-3471-4523-AF1D-EF58E82FF00D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"a2\\\\(3.2.2.0\\\\)\", \"matchCriteriaId\": \"2253DEEB-37A6-491F-A201-9719F29915E7\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"99DE48DF-A309-4A1C-B977-AE81B4EDB589\"}, {\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8D63186-5834-448C-98F2-0C189A11D25D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.\"}, {\"lang\": \"es\", \"value\": \"Vulnerabilidad sin especificar en el m\\u00f3dulo \\\"Cisco Application Control Engine\\\" (ACE) con software A2(1.x) anterior a A2(1.6), A2(2.x) anterior a A2(2.3), y A2(3.x) anterior a A2(3.1) de Catalyst 6500 series switches y 7600 series routers permite a atacantes remotos provocar una denegaci\\u00f3n de servicio (sobrecargar del dispositivo) a trav\\u00e9s de una secuencia de paquetes SSL, tambi\\u00e9n conocido como Bug ID CSCta20756.\"}]",
      "id": "CVE-2010-2824",
      "lastModified": "2024-11-21T01:17:26.757",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2010-08-17T05:41:21.550",
      "references": "[{\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-noinfo\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2010-2824\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2010-08-17T05:41:21.550\",\"lastModified\":\"2025-04-11T00:51:21.963\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.\"},{\"lang\":\"es\",\"value\":\"Vulnerabilidad sin especificar en el m\u00f3dulo \\\"Cisco Application Control Engine\\\" (ACE) con software A2(1.x) anterior a A2(1.6), A2(2.x) anterior a A2(2.3), y A2(3.x) anterior a A2(3.1) de Catalyst 6500 series switches y 7600 series routers permite a atacantes remotos provocar una denegaci\u00f3n de servicio (sobrecargar del dispositivo) a trav\u00e9s de una secuencia de paquetes SSL, tambi\u00e9n conocido como Bug ID CSCta20756.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"a2\\\\(3.1.0\\\\)\",\"matchCriteriaId\":\"152B69CD-BCC3-42FF-97AC-072BFDA0AF1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"a2\\\\(3.1.6\\\\)\",\"matchCriteriaId\":\"4CD3DD6A-3471-4523-AF1D-EF58E82FF00D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"a2\\\\(3.2.2.0\\\\)\",\"matchCriteriaId\":\"2253DEEB-37A6-491F-A201-9719F29915E7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"99DE48DF-A309-4A1C-B977-AE81B4EDB589\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8D63186-5834-448C-98F2-0C189A11D25D\"}]}]}],\"references\":[{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

VAR-201008-0197

Vulnerability from variot - Updated: 2023-12-18 12:39

Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756. The Cisco Application Control Engine Application Control Engine is a solution for a portfolio of load balancing and application delivery products. The Cisco ACE 4710 Application Control Engine application is not affected by this vulnerability. Note: To exploit this vulnerability, you need to complete a three-way handshake. Only communications targeted to affected devices are affected by this vulnerability, and Transit communications are not affected by this vulnerability. An attacker can exploit this issue to cause an affected device to crash and reload, denying service to legitimate users. This issue is tracked by Cisco bug ID CSCta20756. Workarounds that mitigate some of the vulnerabilities are available.

Note: These vulnerabilities are independent of each other. For specific version information, refer to the Software Versions and Fixes section of this advisory. RTSP inspection is disabled by default. HTTP, RTSP, and SIP inspection are disabled by default.

Note: This vulnerability is independent from the other RSTP and SIP inspection vulnerabilities described in this advisory. SIP inspection is disabled by default.

Determining Software Versions ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

To display the version of system software that is currently running on Cisco ACE Application Control Engine, use the "show version" command. All rights reserved. The copyrights to certain works contained herein are owned by other third parties and are used and distributed under license. Some parts of this software are covered under the GNU Public License. A copy of the license is available at http://www.gnu.org/licenses/gpl.html.

Software
  loader:    Version 0.95
  system:    Version A3(1.0) [build 3.0(0)A3(0.0.148)]
  system image file: (nd)/192.168.65.31/scimitar.bin

  Device Manager version 1.1 (0) 20080805:0415

... All rights reserved. 
The copyrights to certain works contained herein are owned by
other third parties and are used and distributed under license. 
Some parts of this software are covered under the GNU Public
License. A copy of the license is available at
http://www.gnu.org/licenses/gpl.html.

Software
  loader:    Version 12.2[121]
  system:    Version A2<3.0> [build 3.0(0)A2(2.99.80)]
  system image file: [LCP] disk0:c6ace-t1k9-mzg.A2_2_99_80.bin
  licensed features: no feature license is installed

...

No other Cisco products are currently known to be affected by these vulnerabilities. Multiple vulnerabilities exist in both products. These vulnerabilities are independent of each other. The following information provides the details about each of the vulnerabilities that are addressed in this advisory.

RTSP Inspection DoS Vulnerability


The RTSP is used by RealAudio, RealNetworks, Apple QuickTime 4,
RealPlayer, and Cisco IP/TV connections. RTSP applications use the
well-known port 554 with TCP and UDP as the control channel. The
module and the appliance only support RTSP over TCP. Only devices with RTSP inspection enabled are affected. RTSP
inspection is disabled by default. Deep packet inspection is a special case of application
inspection where the ACE examines the application payload of a packet
or a traffic stream and makes decisions based on the content of the
data. During HTTP deep inspection, the main focus of the application
inspection process is on HTTP attributes such as the HTTP header, the
URL, and to a limited extent, the payload. User-defined regular
expressions can also be used to detect "signatures" in the payload. Devices with HTTP, RTSP, or SIP
inspection enabled are affected. HTTP, RTSP, and SIP inspection are
disabled by default. 

SIP Inspection DoS Vulnerability
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

SIP is used for call handling sessions, especially two-party
conferences. Only devices with SIP inspection enabled are
affected. SIP inspection is disabled by default. 

Note: TCP or UDP SIP packets may cause a device reload. The CVSS
scoring in this Security Advisory is done in accordance with CVSS
version 2.0. 

CVSS is a standards-based scoring method that conveys vulnerability
severity and helps determine urgency and priority of response. 

Cisco has provided a base and temporal score. Customers can then
compute environmental scores to assist in determining the impact of
the vulnerability in individual networks. 

Cisco has provided an FAQ to answer additional questions regarding
CVSS at:

http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html

Cisco has also provided a CVSS calculator to help compute the
environmental impact for individual networks at:

http://intellishield.cisco.com/security/alertmanager/cvss

CSCta85227, CSCtg14858 - RTSP Inspection DoS Vulnerability

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

CVSS Temporal Score - 6.4

Exploitability          - Functional
Remediation Level       - Official-Fix
Report Confidence       - Confirmed

CSCtb54493 - HTTP, RTSP, and SIP Inspection DoS Vulnerability

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

CVSS Temporal Score - 6.4

Exploitability          - Functional
Remediation Level       - Official-Fix
Report Confidence       - Confirmed

CSCta20756 - SSL DoS Vulnerability

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

CVSS Temporal Score - 6.4

Exploitability          - Functional
Remediation Level       - Official-Fix
Report Confidence       - Confirmed

CSCta65603, CSCta71569 - SIP Inspection DoS Vulnerability

CVSS Base Score - 7.8

Access Vector           - Network
Access Complexity       - Low
Authentication          - None
Confidentiality Impact  - None
Integrity Impact        - None
Availability Impact     - Complete

CVSS Temporal Score - 6.4

Exploitability          - Functional
Remediation Level       - Official-Fix
Report Confidence       - Confirmed

Impact
======

Successful exploitation of any of the vulnerabilities described in
this security advisory may cause a reload of the affected device. 
Repeated exploitation could result in a sustained DoS condition. 

Software Versions and Fixes
===========================

When considering software upgrades, also consult:

http://www.cisco.com/go/psirt

and any subsequent advisories to determine exposure and a
complete upgrade solution. 

In all cases, customers should exercise caution to be certain the
devices to be upgraded contain sufficient memory and that current
hardware and software configurations will continue to be supported
properly by the new release. If the information is not clear, contact
the Cisco Technical Assistance Center (TAC) or your contracted
maintenance provider for assistance. 

Each row of the software table (below) describes the earliest
possible releases that contain the fix (along with the anticipated
date of availability for each, if applicable) are listed in the
"First Fixed Release" column of the table. The "Recommended Release"
column indicates the releases which have fixes for all the published
vulnerabilities at the time of this Advisory. A device running a
release in the given train that is earlier than the release in a
specific column (less than the First Fixed Release) is known to be
vulnerable. Cisco recommends upgrading to a release equal to or later
than the release in the "Recommended Releases" column of the table. 

+--------------------------------------------------------------+
|               | First Fixed Release     | Recommended        |
|               |                         | Release            |
|Vulnerability  |-------------------------+--------------------|
|               | ACE        | ACE Module | ACE       | ACE    |
|               | Appliance  |            | Appliance | Module |
|---------------+------------+------------+-----------+--------|
| RTSP          |            |            |           | A2     |
| Inspection    | A3(2.6)    | A2(3.2)    | A3(2.6)   | (3.2)  |
| Vulnerability |            |            |           |        |
|---------------+------------+------------+-----------+--------|
| HTTP, RTSP,   |            |            |           |        |
| SIP           | A3(2.6)    | Not        | A3(2.6)   | A2     |
| Inspection    |            | vulnerable |           | (3.2)  |
| Vulnerability |            |            |           |        |
|---------------+------------+------------+-----------+--------|
|               |            | A2(1.6)    |           |        |
| SSL           | Not        |            |           | A2     |
| Vulnerability | vulnerable | A2(2.3)    | A3(2.6)   | (3.2)  |
|               |            |            |           |        |
|               |            | A2(3.1)    |           |        |
|---------------+------------+------------+-----------+--------|
|               |            | A2(1.6)    |           |        |
| SIP           |            |            |           | A2     |
| Inspection    | A3(2.4)    | A2(2.3)    | A3(2.6)   | (3.2)  |
| Vulnerability |            |            |           |        |
|               |            | A2(3.1)    |           |        |
+--------------------------------------------------------------+

Cisco ACE 4710 Application Control Engine appliance software can be
downloaded from:

http://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=281222179

Cisco ACE Module software can be downloaded from:

http://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=280557289

Workarounds
===========

In addition to the recommendations described below, mitigation
techniques that can be deployed on Cisco devices within the network
are available in the Cisco Applied Mitigation Bulletin companion
document for this advisory:

http://www.cisco.com/warp/public/707/cisco-amb-20100811-ace.shtml

RTSP Inspection DoS Vulnerability

This vulnerability can be mitigated by disabling RTSP inspection if it is not required. RTSP inspection is disabled by default. Administrators can disable RTSP inspection by issuing the "no inspect rtsp" command under the respective policy map.

Note: This workaround is only feasible if RTSP inspection is not needed or required in a load-balancing deployment.

HTTP, RTSP, and SIP Inspection DoS Vulnerability ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This vulnerability can be mitigated by disabling HTTP, RTSP, and SIP inspection if they are not required. HTTP, RTSP, and SIP inspection are disabled by default.

Administrators can disable HTTP inspection by issuing the "no inspect http" command under the respective policy map.

Administrators can disable RTSP inspection by issuing the "no inspect rtsp" command under the respective policy map.

Administrators can disable SIP inspection by issuing the "no inspect sip" command under the respective policy map.

Note: This workaround is only feasible if HTTP, RTSP, and SIP inspections are not needed or required in a load-balancing deployment.

SSL DoS Vulnerability ~~~~~~~~~~~~~~~~~~~~~

There are no workarounds available to mitigate this vulnerability.

SIP Inspection DoS Vulnerability ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This vulnerability can be mitigated by disabling SIP inspection if it is not required. SIP inspection is disabled by default. Administrators can disable SIP inspection by issuing the "no inspect sip" command under the respective policy map.

Note: This workaround is only feasible if SIP inspection is not needed or required in a load-balancing deployment.

Obtaining Fixed Software

Cisco has released free software updates that address these vulnerabilities. Prior to deploying software, customers should consult their maintenance provider or check the software for feature set compatibility and known issues specific to their environment.

Customers may only install and expect support for the feature sets they have purchased. By installing, downloading, accessing or otherwise using such software upgrades, customers agree to be bound by the terms of Cisco's software license terms found at:

http://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html

or as otherwise set forth at Cisco.com Downloads at:

http://www.cisco.com/public/sw-center/sw-usingswc.shtml

Do not contact psirt@cisco.com or security-alert@cisco.com for software upgrades.

Customers with Service Contracts +-------------------------------

Customers with contracts should obtain upgraded software through their regular update channels. For most customers, this means that upgrades should be obtained through the Software Center on Cisco's worldwide website at http://www.cisco.com.

Customers without Service Contracts +----------------------------------

Customers who purchase direct from Cisco but do not hold a Cisco service contract, and customers who purchase through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should acquire upgrades by contacting the Cisco Technical Assistance Center (TAC). TAC contacts are as follows.

+1 800 553 2447 (toll free from within North America)
+1 408 526 7209 (toll call from anywhere in the world)
e-mail: tac@cisco.com

Customers should have their product serial number available and be prepared to give the URL of this notice as evidence of entitlement to a free upgrade. Free upgrades for non-contract customers must be requested through the TAC.

Refer to:

http://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html

for additional TAC contact information, including localized telephone numbers, and instructions and e-mail addresses for use in various languages.

Exploitation and Public Announcements

The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities described in this advisory.

These vulnerabilities were found during the troubleshooting of customer service requests and internal testing.

Status of this Notice: FINAL

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.

A stand-alone copy or Paraphrase of the text of this document that omits the distribution URL in the following section is an uncontrolled copy, and may lack important information or contain factual errors.

Distribution

This advisory is posted on Cisco's worldwide website at:

http://www.cisco.com/warp/public/707/cisco-sa-20100811-ace.shtml

In addition to worldwide web posting, a text version of this notice is clear-signed with the Cisco PSIRT PGP key and is posted to the following e-mail and Usenet news recipients.

cust-security-announce@cisco.com
first-bulletins@lists.first.org
bugtraq@securityfocus.com
vulnwatch@vulnwatch.org
cisco@spot.colorado.edu
cisco-nsp@puck.nether.net
full-disclosure@lists.grok.org.uk
comp.dcom.sys.cisco@newsgate.cisco.com

Future updates of this advisory, if any, will be placed on Cisco's worldwide website, but may or may not be actively announced on mailing lists or newsgroups. Users concerned about this problem are encouraged to check the above URL for any updates.

Revision History

Cisco Security Procedures

Complete information on reporting security vulnerabilities in Cisco products, obtaining assistance with security incidents, and registering to receive security information from Cisco, is available on Cisco's worldwide website at:

http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html

This includes instructions for press inquiries regarding Cisco security notices. All Cisco security advisories are available at:

http://www.cisco.com/go/psirt -----BEGIN PGP SIGNATURE-----

iD8DBQFMYrc986n/Gc8U/uARAsRXAJ9mSSZZEsFDbdgF09VYUcdoSiGcDwCfQmNk Aw+GHKEq3mpY2/rCv+nq7Gg= =qoPf -----END PGP SIGNATURE-----

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201008-0197",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "ace module a2",
        "scope": null,
        "trust": 2.7,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ace application control engine module 3.0 a2",
        "scope": null,
        "trust": 1.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ace module a2",
        "scope": "ne",
        "trust": 1.2,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ace module",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "a2\\(3.2.2.0\\)"
      },
      {
        "model": "ace module",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "a2\\(3.1.6\\)"
      },
      {
        "model": "ace module",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "a2\\(3.1.0\\)"
      },
      {
        "model": "ace module",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "a2(2.x)"
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "a2(3.1)"
      },
      {
        "model": "ace module",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "a2(1.x)"
      },
      {
        "model": "catalyst 7600 series",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "software a2(1.6)"
      },
      {
        "model": "catalyst 6500 series",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "a2(2.3)"
      },
      {
        "model": "ace module",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "a2(3.x)"
      },
      {
        "model": null,
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ace module",
        "version": "*"
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "a2\\(3.2.2.0\\)"
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "a2\\(3.1.0\\)"
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "a2\\(3.1.6\\)"
      },
      {
        "model": "ace module",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.1.6\\)",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.1.0\\)",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.2.2.0\\)",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ],
    "trust": 0.9
  },
  "cve": "CVE-2010-2824",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 7.8,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2010-2824",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "IVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "fc63ee00-2355-11e6-abef-000c29c66e3d",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.2,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.9 [IVD]"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-45429",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2010-2824",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201008-177",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "IVD",
            "id": "fc63ee00-2355-11e6-abef-000c29c66e3d",
            "trust": 0.2,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-45429",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756. The Cisco Application Control Engine Application Control Engine is a solution for a portfolio of load balancing and application delivery products. The Cisco ACE 4710 Application Control Engine application is not affected by this vulnerability. Note: To exploit this vulnerability, you need to complete a three-way handshake. Only communications targeted to affected devices are affected by this vulnerability, and Transit communications are not affected by this vulnerability. \nAn attacker can exploit this issue to cause an affected device to crash and reload, denying service to legitimate users. \nThis issue is tracked by Cisco  bug ID CSCta20756. \nWorkarounds that mitigate some of the vulnerabilities are available. \n\nNote: These vulnerabilities are independent of each other. For\nspecific version information, refer to the Software Versions and\nFixes section of this advisory. RTSP inspection is disabled by default. HTTP, RTSP, and SIP\ninspection are disabled by default. \n\nNote: This vulnerability is independent from the other RSTP and SIP\ninspection vulnerabilities described in this advisory. SIP inspection is disabled by default. \n\nDetermining Software Versions\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nTo display the version of system software that is currently running\non Cisco ACE Application Control Engine, use the \"show version\"\ncommand. All rights reserved. \n    The copyrights to certain works contained herein are owned by\n    other third parties and are used and distributed under license. \n    Some parts of this software are covered under the GNU Public\n    License. A copy of the license is available at\n    http://www.gnu.org/licenses/gpl.html. \n    \n    Software\n      loader:    Version 0.95\n      system:    Version A3(1.0) [build 3.0(0)A3(0.0.148)]\n      system image file: (nd)/192.168.65.31/scimitar.bin\n    \n      Device Manager version 1.1 (0) 20080805:0415\n    \n    ... All rights reserved. \n    The copyrights to certain works contained herein are owned by\n    other third parties and are used and distributed under license. \n    Some parts of this software are covered under the GNU Public\n    License. A copy of the license is available at\n    http://www.gnu.org/licenses/gpl.html. \n    \n    Software\n      loader:    Version 12.2[121]\n      system:    Version A2\u003c3.0\u003e [build 3.0(0)A2(2.99.80)]\n      system image file: [LCP] disk0:c6ace-t1k9-mzg.A2_2_99_80.bin\n      licensed features: no feature license is installed\n    \n    ... \n\nNo other Cisco products are currently known to be affected by these\nvulnerabilities. Multiple\nvulnerabilities exist in both products. These vulnerabilities are\nindependent of each other. The following information\nprovides the details about each of the vulnerabilities that are\naddressed in this advisory. \n\nRTSP Inspection DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nThe RTSP is used by RealAudio, RealNetworks, Apple QuickTime 4,\nRealPlayer, and Cisco IP/TV connections. RTSP applications use the\nwell-known port 554 with TCP and UDP as the control channel. The\nmodule and the appliance only support RTSP over TCP. Only devices with RTSP inspection enabled are affected. RTSP\ninspection is disabled by default. Deep packet inspection is a special case of application\ninspection where the ACE examines the application payload of a packet\nor a traffic stream and makes decisions based on the content of the\ndata. During HTTP deep inspection, the main focus of the application\ninspection process is on HTTP attributes such as the HTTP header, the\nURL, and to a limited extent, the payload. User-defined regular\nexpressions can also be used to detect \"signatures\" in the payload. Devices with HTTP, RTSP, or SIP\ninspection enabled are affected. HTTP, RTSP, and SIP inspection are\ndisabled by default. \n\nSIP Inspection DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nSIP is used for call handling sessions, especially two-party\nconferences. Only devices with SIP inspection enabled are\naffected. SIP inspection is disabled by default. \n\nNote: TCP or UDP SIP packets may cause a device reload. The CVSS\nscoring in this Security Advisory is done in accordance with CVSS\nversion 2.0. \n\nCVSS is a standards-based scoring method that conveys vulnerability\nseverity and helps determine urgency and priority of response. \n\nCisco has provided a base and temporal score. Customers can then\ncompute environmental scores to assist in determining the impact of\nthe vulnerability in individual networks. \n\nCisco has provided an FAQ to answer additional questions regarding\nCVSS at:\n\nhttp://www.cisco.com/web/about/security/intelligence/cvss-qandas.html\n\nCisco has also provided a CVSS calculator to help compute the\nenvironmental impact for individual networks at:\n\nhttp://intellishield.cisco.com/security/alertmanager/cvss\n\nCSCta85227, CSCtg14858 - RTSP Inspection DoS Vulnerability\n\nCVSS Base Score - 7.8\n\nAccess Vector           - Network\nAccess Complexity       - Low\nAuthentication          - None\nConfidentiality Impact  - None\nIntegrity Impact        - None\nAvailability Impact     - Complete\n\nCVSS Temporal Score - 6.4\n\nExploitability          - Functional\nRemediation Level       - Official-Fix\nReport Confidence       - Confirmed\n\nCSCtb54493 - HTTP, RTSP, and SIP Inspection DoS Vulnerability\n\nCVSS Base Score - 7.8\n\nAccess Vector           - Network\nAccess Complexity       - Low\nAuthentication          - None\nConfidentiality Impact  - None\nIntegrity Impact        - None\nAvailability Impact     - Complete\n\nCVSS Temporal Score - 6.4\n\nExploitability          - Functional\nRemediation Level       - Official-Fix\nReport Confidence       - Confirmed\n\nCSCta20756 - SSL DoS Vulnerability\n\nCVSS Base Score - 7.8\n\nAccess Vector           - Network\nAccess Complexity       - Low\nAuthentication          - None\nConfidentiality Impact  - None\nIntegrity Impact        - None\nAvailability Impact     - Complete\n\nCVSS Temporal Score - 6.4\n\nExploitability          - Functional\nRemediation Level       - Official-Fix\nReport Confidence       - Confirmed\n\nCSCta65603, CSCta71569 - SIP Inspection DoS Vulnerability\n\nCVSS Base Score - 7.8\n\nAccess Vector           - Network\nAccess Complexity       - Low\nAuthentication          - None\nConfidentiality Impact  - None\nIntegrity Impact        - None\nAvailability Impact     - Complete\n\nCVSS Temporal Score - 6.4\n\nExploitability          - Functional\nRemediation Level       - Official-Fix\nReport Confidence       - Confirmed\n\nImpact\n======\n\nSuccessful exploitation of any of the vulnerabilities described in\nthis security advisory may cause a reload of the affected device. \nRepeated exploitation could result in a sustained DoS condition. \n\nSoftware Versions and Fixes\n===========================\n\nWhen considering software upgrades, also consult:\n\nhttp://www.cisco.com/go/psirt\n\nand any subsequent advisories to determine exposure and a\ncomplete upgrade solution. \n\nIn all cases, customers should exercise caution to be certain the\ndevices to be upgraded contain sufficient memory and that current\nhardware and software configurations will continue to be supported\nproperly by the new release. If the information is not clear, contact\nthe Cisco Technical Assistance Center (TAC) or your contracted\nmaintenance provider for assistance. \n\nEach row of the software table (below) describes the earliest\npossible releases that contain the fix (along with the anticipated\ndate of availability for each, if applicable) are listed in the\n\"First Fixed Release\" column of the table. The \"Recommended Release\"\ncolumn indicates the releases which have fixes for all the published\nvulnerabilities at the time of this Advisory. A device running a\nrelease in the given train that is earlier than the release in a\nspecific column (less than the First Fixed Release) is known to be\nvulnerable. Cisco recommends upgrading to a release equal to or later\nthan the release in the \"Recommended Releases\" column of the table. \n\n+--------------------------------------------------------------+\n|               | First Fixed Release     | Recommended        |\n|               |                         | Release            |\n|Vulnerability  |-------------------------+--------------------|\n|               | ACE        | ACE Module | ACE       | ACE    |\n|               | Appliance  |            | Appliance | Module |\n|---------------+------------+------------+-----------+--------|\n| RTSP          |            |            |           | A2     |\n| Inspection    | A3(2.6)    | A2(3.2)    | A3(2.6)   | (3.2)  |\n| Vulnerability |            |            |           |        |\n|---------------+------------+------------+-----------+--------|\n| HTTP, RTSP,   |            |            |           |        |\n| SIP           | A3(2.6)    | Not        | A3(2.6)   | A2     |\n| Inspection    |            | vulnerable |           | (3.2)  |\n| Vulnerability |            |            |           |        |\n|---------------+------------+------------+-----------+--------|\n|               |            | A2(1.6)    |           |        |\n| SSL           | Not        |            |           | A2     |\n| Vulnerability | vulnerable | A2(2.3)    | A3(2.6)   | (3.2)  |\n|               |            |            |           |        |\n|               |            | A2(3.1)    |           |        |\n|---------------+------------+------------+-----------+--------|\n|               |            | A2(1.6)    |           |        |\n| SIP           |            |            |           | A2     |\n| Inspection    | A3(2.4)    | A2(2.3)    | A3(2.6)   | (3.2)  |\n| Vulnerability |            |            |           |        |\n|               |            | A2(3.1)    |           |        |\n+--------------------------------------------------------------+\n\nCisco ACE 4710 Application Control Engine appliance software can be\ndownloaded from:\n\nhttp://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=281222179\n\nCisco ACE Module software can be downloaded from:\n\nhttp://tools.cisco.com/support/downloads/go/Redirect.x?mdfid=280557289\n\nWorkarounds\n===========\n\nIn addition to the recommendations described below, mitigation\ntechniques that can be deployed on Cisco devices within the network\nare available in the Cisco Applied Mitigation Bulletin companion\ndocument for this advisory:\n\nhttp://www.cisco.com/warp/public/707/cisco-amb-20100811-ace.shtml\n\nRTSP Inspection DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nThis vulnerability can be mitigated by disabling RTSP inspection if\nit is not required. RTSP inspection is disabled by default. \nAdministrators can disable RTSP inspection by issuing the \"no inspect\nrtsp\" command under the respective policy map. \n\nNote: This workaround is only feasible if RTSP inspection is not\nneeded or required in a load-balancing deployment. \n\nHTTP, RTSP, and SIP Inspection DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nThis vulnerability can be mitigated by disabling HTTP, RTSP, and SIP\ninspection if they are not required. HTTP, RTSP, and SIP inspection\nare disabled by default. \n\nAdministrators can disable HTTP inspection by issuing the \"no inspect\nhttp\" command under the respective policy map. \n\nAdministrators can disable RTSP inspection by issuing the \"no inspect\nrtsp\" command under the respective policy map. \n\nAdministrators can disable SIP inspection by issuing the \"no inspect\nsip\" command under the respective policy map. \n\nNote: This workaround is only feasible if HTTP, RTSP, and SIP\ninspections are not needed or required in a load-balancing\ndeployment. \n\nSSL DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~\n\nThere are no workarounds available to mitigate this vulnerability. \n\nSIP Inspection DoS Vulnerability\n~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~\n\nThis vulnerability can be mitigated by disabling SIP inspection if it\nis not required. SIP inspection is disabled by default. \nAdministrators can disable SIP inspection by issuing the \"no inspect\nsip\" command under the respective policy map. \n\nNote: This workaround is only feasible if SIP inspection is not\nneeded or required in a load-balancing deployment. \n\nObtaining Fixed Software\n========================\n\nCisco has released free software updates that address these\nvulnerabilities. Prior to deploying software, customers should\nconsult their maintenance provider or check the software for feature\nset compatibility and known issues specific to their environment. \n\nCustomers may only install and expect support for the feature sets\nthey have purchased. By installing, downloading, accessing or\notherwise using such software upgrades, customers agree to be bound\nby the terms of Cisco\u0027s software license terms found at:\n\nhttp://www.cisco.com/en/US/docs/general/warranty/English/EU1KEN_.html\n\nor as otherwise set forth at Cisco.com Downloads at:\n\nhttp://www.cisco.com/public/sw-center/sw-usingswc.shtml\n\nDo not contact psirt@cisco.com or security-alert@cisco.com for\nsoftware upgrades. \n\nCustomers with Service Contracts\n+-------------------------------\n\nCustomers with contracts should obtain upgraded software through\ntheir regular update channels. For most customers, this means that\nupgrades should be obtained through the Software Center on Cisco\u0027s\nworldwide website at http://www.cisco.com. \n\nCustomers without Service Contracts\n+----------------------------------\n\nCustomers who purchase direct from Cisco but do not hold a Cisco\nservice contract, and customers who purchase through third-party\nvendors but are unsuccessful in obtaining fixed software through\ntheir point of sale should acquire upgrades by contacting the Cisco\nTechnical Assistance Center (TAC). TAC contacts are as follows. \n\n  * +1 800 553 2447 (toll free from within North America)\n  * +1 408 526 7209 (toll call from anywhere in the world)\n  * e-mail: tac@cisco.com\n\nCustomers should have their product serial number available and be\nprepared to give the URL of this notice as evidence of entitlement to\na free upgrade. Free upgrades for non-contract customers must be\nrequested through the TAC. \n\nRefer to:\n\nhttp://www.cisco.com/en/US/support/tsd_cisco_worldwide_contacts.html\n\nfor additional TAC contact information, including localized telephone\nnumbers, and instructions and e-mail addresses for use in various\nlanguages. \n\nExploitation and Public Announcements\n=====================================\n\nThe Cisco PSIRT is not aware of any public announcements or malicious\nuse of the vulnerabilities described in this advisory. \n\nThese vulnerabilities were found during the troubleshooting of\ncustomer service requests and internal testing. \n\nStatus of this Notice: FINAL\n============================\n\nTHIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY\nKIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF\nMERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE\nINFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS\nAT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS\nDOCUMENT AT ANY TIME. \n\nA stand-alone copy or Paraphrase of the text of this document that\nomits the distribution URL in the following section is an\nuncontrolled copy, and may lack important information or contain\nfactual errors. \n\nDistribution\n============\n\nThis advisory is posted on Cisco\u0027s worldwide website at:\n\nhttp://www.cisco.com/warp/public/707/cisco-sa-20100811-ace.shtml\n\nIn addition to worldwide web posting, a text version of this notice\nis clear-signed with the Cisco PSIRT PGP key and is posted to the\nfollowing e-mail and Usenet news recipients. \n\n  * cust-security-announce@cisco.com\n  * first-bulletins@lists.first.org\n  * bugtraq@securityfocus.com\n  * vulnwatch@vulnwatch.org\n  * cisco@spot.colorado.edu\n  * cisco-nsp@puck.nether.net\n  * full-disclosure@lists.grok.org.uk\n  * comp.dcom.sys.cisco@newsgate.cisco.com\n\nFuture updates of this advisory, if any, will be placed on Cisco\u0027s\nworldwide website, but may or may not be actively announced on\nmailing lists or newsgroups. Users concerned about this problem are\nencouraged to check the above URL for any updates. \n\nRevision History\n================\n\n+---------------------------------------+\n| Revision |                | Initial   |\n| 1.0      | 2010-August-11 | public    |\n|          |                | release.  |\n+---------------------------------------+\n\nCisco Security Procedures\n=========================\n\nComplete information on reporting security vulnerabilities in Cisco\nproducts, obtaining assistance with security incidents, and\nregistering to receive security information from Cisco, is available\non Cisco\u0027s worldwide website at:\n\nhttp://www.cisco.com/en/US/products/products_security_vulnerability_policy.html\n\nThis includes instructions for press inquiries regarding Cisco security\nnotices.  All Cisco security advisories are available at:\n\nhttp://www.cisco.com/go/psirt\n-----BEGIN PGP SIGNATURE-----\n\niD8DBQFMYrc986n/Gc8U/uARAsRXAJ9mSSZZEsFDbdgF09VYUcdoSiGcDwCfQmNk\nAw+GHKEq3mpY2/rCv+nq7Gg=\n=qoPf\n-----END PGP SIGNATURE-----\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "db": "PACKETSTORM",
        "id": "92711"
      }
    ],
    "trust": 2.79
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2010-2824",
        "trust": 3.7
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177",
        "trust": 0.9
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584",
        "trust": 0.8
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218",
        "trust": 0.8
      },
      {
        "db": "CISCO",
        "id": "20100811 MULTIPLE VULNERABILITIES IN THE CISCO ACE APPLICATION CONTROL ENGINE MODULE AND CISCO ACE 4710 APPLICATION CONTROL ENGINE",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "42376",
        "trust": 0.4
      },
      {
        "db": "IVD",
        "id": "FC63EE00-2355-11E6-ABEF-000C29C66E3D",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "92711",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "PACKETSTORM",
        "id": "92711"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "id": "VAR-201008-0197",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      }
    ],
    "trust": 1.4255421766666667
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "ICS"
        ],
        "sub_category": null,
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:39:02.822000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20100811-ace",
        "trust": 0.8,
        "url": "http://www.cisco.com/en/us/products/csa/cisco-sa-20100811-ace.html"
      },
      {
        "title": "Cisco ACE Application Control Engine Module SSL Handling Patch for Denial of Service Vulnerability",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/816"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-noinfo",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.cisco.com/en/us/products/products_security_advisory09186a0080b4091d.shtml"
      },
      {
        "trust": 1.0,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20100811-ace.shtml"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2010-2824"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2010-2824"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/warp/public/707/cisco-amb-20100811-ace.shtml"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2823"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/go/psirt"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2824"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/support/tsd_cisco_worldwide_contacts.html"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/products/products_security_vulnerability_policy.html"
      },
      {
        "trust": 0.1,
        "url": "http://tools.cisco.com/support/downloads/go/redirect.x?mdfid=280557289"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/en/us/docs/general/warranty/english/eu1ken_.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2822"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/web/about/security/intelligence/cvss-qandas.html"
      },
      {
        "trust": 0.1,
        "url": "http://www.gnu.org/licenses/gpl.html."
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com."
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/public/sw-center/sw-usingswc.shtml"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2010-2825"
      },
      {
        "trust": 0.1,
        "url": "http://tools.cisco.com/support/downloads/go/redirect.x?mdfid=281222179"
      },
      {
        "trust": 0.1,
        "url": "http://www.cisco.com/tac"
      },
      {
        "trust": 0.1,
        "url": "http://intellishield.cisco.com/security/alertmanager/cvss"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "PACKETSTORM",
        "id": "92711"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "db": "BID",
        "id": "42376"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "db": "PACKETSTORM",
        "id": "92711"
      },
      {
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2010-08-12T00:00:00",
        "db": "IVD",
        "id": "fc63ee00-2355-11e6-abef-000c29c66e3d"
      },
      {
        "date": "2010-08-12T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "date": "2010-08-17T00:00:00",
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "date": "2010-08-11T00:00:00",
        "db": "BID",
        "id": "42376"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "date": "2010-08-13T01:20:13",
        "db": "PACKETSTORM",
        "id": "92711"
      },
      {
        "date": "2010-08-17T05:41:21.550000",
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "date": "2010-08-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2010-08-12T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "date": "2011-07-26T00:00:00",
        "db": "VULHUB",
        "id": "VHN-45429"
      },
      {
        "date": "2010-08-11T00:00:00",
        "db": "BID",
        "id": "42376"
      },
      {
        "date": "2012-06-26T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2010-004218"
      },
      {
        "date": "2011-07-26T04:00:00",
        "db": "NVD",
        "id": "CVE-2010-2824"
      },
      {
        "date": "2010-08-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco ACE Application Control Engine Module SSL Handling Denial of Service Vulnerability",
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2010-1584"
      },
      {
        "db": "BID",
        "id": "42376"
      }
    ],
    "trust": 0.9
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "lack of information",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201008-177"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2010-2824

Vulnerability from fkie_nvd - Published: 2010-08-17 05:41 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

	URL	Tags
	psirt@cisco.com	http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	ace_module	*
cisco	ace_module	*
cisco	ace_module	*
cisco	catalyst_6500	*
cisco	catalyst_7600	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "152B69CD-BCC3-42FF-97AC-072BFDA0AF1A",
              "versionEndIncluding": "a2\\(3.1.0\\)",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4CD3DD6A-3471-4523-AF1D-EF58E82FF00D",
              "versionEndIncluding": "a2\\(3.1.6\\)",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2253DEEB-37A6-491F-A201-9719F29915E7",
              "versionEndIncluding": "a2\\(3.2.2.0\\)",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "99DE48DF-A309-4A1C-B977-AE81B4EDB589",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C8D63186-5834-448C-98F2-0C189A11D25D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad sin especificar en el m\u00f3dulo \"Cisco Application Control Engine\" (ACE) con software A2(1.x) anterior a A2(1.6), A2(2.x) anterior a A2(2.3), y A2(3.x) anterior a A2(3.1) de Catalyst 6500 series switches y 7600 series routers permite a atacantes remotos provocar una denegaci\u00f3n de servicio (sobrecargar del dispositivo) a trav\u00e9s de una secuencia de paquetes SSL, tambi\u00e9n conocido como Bug ID CSCta20756."
    }
  ],
  "id": "CVE-2010-2824",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2010-08-17T05:41:21.550",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-6Q9P-J68Q-8J7X

Vulnerability from github – Published: 2022-05-17 05:40 – Updated: 2022-05-17 05:40

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2010-2824"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2010-08-17T05:41:00Z",
    "severity": "HIGH"
  },
  "details": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.",
  "id": "GHSA-6q9p-j68q-8j7x",
  "modified": "2022-05-17T05:40:11Z",
  "published": "2022-05-17T05:40:11Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2010-2824"
    },
    {
      "type": "WEB",
      "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CERTA-2010-AVI-381

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits Cisco ACE permettent à un utilisateur malintentionné de réaliser un déni de service à distance.

Description

Plusieurs vulnérabilités dans les produits Cisco ACE permettent à un utilisateur malintentionné de réaliser un déni de service à distance :

(CVE-2010-2822) le traitement de l'inspection des flux RTSP en transit par les modules et les boîtiers ACE présente une erreur. Cette inspection des flux RTSP n'est pas activée par défaut ;
(CVE-2010-2823) les boîtiers Cisco ACE 4710 présentent un défaut lors de l'inspection en profondeur des flux HTTP en transit. Cette vulnérabilité est présente dès lors que l'inspection des flux HTTP, RTSP ou SIP est activée. L'inspection des flux HTTP, RTSP et SIP n'est pas activée par défaut ;
(CVE-2010-2824) le module Cisco ACE peut cesser de fonctionner quand certains paquets SSL spécialement conçus lui sont adressés ;
(CVE-2010-2825) des paquets SIP en transit spécialement conçus peuvent provoquer un arrêt de fonctionnement des modules et des boîtiers Cisco ACE quand l'inspection de ce flux est activée. L'inspection des flux SIP n'est pas activée par défaut.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Cisco	N/A	Cisco ACE 4710 Application Control Engine.
	Cisco	N/A	Cisco ACE Application Control Engine Module ;

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco 20100811-ace du 11 août 2010

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco ACE 4710 Application Control Engine.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ACE Application Control Engine Module ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits Cisco ACE permettent \u00e0 un\nutilisateur malintentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service \u00e0 distance\u00a0:\n\n-   (CVE-2010-2822) le traitement de l\u0027inspection des flux RTSP en\n    transit par les modules et les bo\u00eetiers ACE pr\u00e9sente une erreur.\n    Cette inspection des flux RTSP n\u0027est pas activ\u00e9e par d\u00e9faut\u00a0;\n-   (CVE-2010-2823) les bo\u00eetiers Cisco ACE 4710 pr\u00e9sentent un d\u00e9faut\n    lors de l\u0027inspection en profondeur des flux HTTP en transit. Cette\n    vuln\u00e9rabilit\u00e9 est pr\u00e9sente d\u00e8s lors que l\u0027inspection des flux HTTP,\n    RTSP ou SIP est activ\u00e9e. L\u0027inspection des flux HTTP, RTSP et SIP\n    n\u0027est pas activ\u00e9e par d\u00e9faut\u00a0;\n-   (CVE-2010-2824) le module Cisco ACE peut cesser de fonctionner quand\n    certains paquets SSL sp\u00e9cialement con\u00e7us lui sont adress\u00e9s\u00a0;\n-   (CVE-2010-2825) des paquets SIP en transit sp\u00e9cialement con\u00e7us\n    peuvent provoquer un arr\u00eat de fonctionnement des modules et des\n    bo\u00eetiers Cisco ACE quand l\u0027inspection de ce flux est activ\u00e9e.\n    L\u0027inspection des flux SIP n\u0027est pas activ\u00e9e par d\u00e9faut.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2010-2823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2823"
    },
    {
      "name": "CVE-2010-2822",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2822"
    },
    {
      "name": "CVE-2010-2825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2825"
    },
    {
      "name": "CVE-2010-2824",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2824"
    }
  ],
  "links": [],
  "reference": "CERTA-2010-AVI-381",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2010-08-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits Cisco ACE permettent \u00e0 un\nutilisateur malintentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans Cisco ACE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco 20100811-ace du 11 ao\u00fbt 2010",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20100811-ace.shtml"
    }
  ]
}

CERTA-2010-AVI-381

Vulnerability from certfr_avis - Published: - Updated:

Plusieurs vulnérabilités dans les produits Cisco ACE permettent à un utilisateur malintentionné de réaliser un déni de service à distance.

Description

Plusieurs vulnérabilités dans les produits Cisco ACE permettent à un utilisateur malintentionné de réaliser un déni de service à distance :

(CVE-2010-2822) le traitement de l'inspection des flux RTSP en transit par les modules et les boîtiers ACE présente une erreur. Cette inspection des flux RTSP n'est pas activée par défaut ;
(CVE-2010-2823) les boîtiers Cisco ACE 4710 présentent un défaut lors de l'inspection en profondeur des flux HTTP en transit. Cette vulnérabilité est présente dès lors que l'inspection des flux HTTP, RTSP ou SIP est activée. L'inspection des flux HTTP, RTSP et SIP n'est pas activée par défaut ;
(CVE-2010-2824) le module Cisco ACE peut cesser de fonctionner quand certains paquets SSL spécialement conçus lui sont adressés ;
(CVE-2010-2825) des paquets SIP en transit spécialement conçus peuvent provoquer un arrêt de fonctionnement des modules et des boîtiers Cisco ACE quand l'inspection de ce flux est activée. L'inspection des flux SIP n'est pas activée par défaut.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Cisco	N/A	Cisco ACE 4710 Application Control Engine.
	Cisco	N/A	Cisco ACE Application Control Engine Module ;

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco 20100811-ace du 11 août 2010

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco ACE 4710 Application Control Engine.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ACE Application Control Engine Module ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s dans les produits Cisco ACE permettent \u00e0 un\nutilisateur malintentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service \u00e0 distance\u00a0:\n\n-   (CVE-2010-2822) le traitement de l\u0027inspection des flux RTSP en\n    transit par les modules et les bo\u00eetiers ACE pr\u00e9sente une erreur.\n    Cette inspection des flux RTSP n\u0027est pas activ\u00e9e par d\u00e9faut\u00a0;\n-   (CVE-2010-2823) les bo\u00eetiers Cisco ACE 4710 pr\u00e9sentent un d\u00e9faut\n    lors de l\u0027inspection en profondeur des flux HTTP en transit. Cette\n    vuln\u00e9rabilit\u00e9 est pr\u00e9sente d\u00e8s lors que l\u0027inspection des flux HTTP,\n    RTSP ou SIP est activ\u00e9e. L\u0027inspection des flux HTTP, RTSP et SIP\n    n\u0027est pas activ\u00e9e par d\u00e9faut\u00a0;\n-   (CVE-2010-2824) le module Cisco ACE peut cesser de fonctionner quand\n    certains paquets SSL sp\u00e9cialement con\u00e7us lui sont adress\u00e9s\u00a0;\n-   (CVE-2010-2825) des paquets SIP en transit sp\u00e9cialement con\u00e7us\n    peuvent provoquer un arr\u00eat de fonctionnement des modules et des\n    bo\u00eetiers Cisco ACE quand l\u0027inspection de ce flux est activ\u00e9e.\n    L\u0027inspection des flux SIP n\u0027est pas activ\u00e9e par d\u00e9faut.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2010-2823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2823"
    },
    {
      "name": "CVE-2010-2822",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2822"
    },
    {
      "name": "CVE-2010-2825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2825"
    },
    {
      "name": "CVE-2010-2824",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2824"
    }
  ],
  "links": [],
  "reference": "CERTA-2010-AVI-381",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2010-08-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    }
  ],
  "summary": "Plusieurs vuln\u00e9rabilit\u00e9s dans les produits Cisco ACE permettent \u00e0 un\nutilisateur malintentionn\u00e9 de r\u00e9aliser un d\u00e9ni de service \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans Cisco ACE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco 20100811-ace du 11 ao\u00fbt 2010",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20100811-ace.shtml"
    }
  ]
}

GSD-2010-2824

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2010-2824

Aliases

CVE-2010-2824

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2010-2824",
    "description": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.",
    "id": "GSD-2010-2824"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2010-2824"
      ],
      "details": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756.",
      "id": "GSD-2010-2824",
      "modified": "2023-12-13T01:21:31.709078Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2010-2824",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20100811 Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine",
            "refsource": "CISCO",
            "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.1.6\\)",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.1.0\\)",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:ace_module:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "a2\\(3.2.2.0\\)",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2010-2824"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers allows remote attackers to cause a denial of service (device reload) via a sequence of SSL packets, aka Bug ID CSCta20756."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20100811 Multiple Vulnerabilities in the Cisco ACE Application Control Engine Module and Cisco ACE 4710 Application Control Engine",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2011-07-26T04:00Z",
      "publishedDate": "2010-08-17T05:41Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2010-2824 (GCVE-0-2010-2824)

VAR-201008-0197

Obtaining Fixed Software

Exploitation and Public Announcements

Status of this Notice: FINAL

Distribution

Revision History

Cisco Security Procedures

FKIE_CVE-2010-2824

GHSA-6Q9P-J68Q-8J7X

CERTA-2010-AVI-381

Description

Solution

CERTA-2010-AVI-381

Description

Solution

GSD-2010-2824

Tags

Sightings

Nomenclature