CVE-2002-2037

Published: Dec 31, 2002Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The Cisco Media Gateway Controller (MGC) in (1) SC2200 7.4 and earlier, (2) VSC3000 9.1 and earlier, (3) PGW 2200 9.1 and earlier, (4) Billing and Management Server (BAMS) and (5) Voice Services Provisioning Tool (VSPT) runs on default installations of Solaris 2.6 with unnecessary services and without the latest security patches, which allows attackers to exploit known vulnerabilities.

Affected (5)

Products: Cisco: Bams, Pgw 2200, Sc2200, Vsc3000, Vspt

5 products

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Cisco Bams	All versions
Cisco Pgw 2200	Up to 9.1
Cisco Sc2200	Up to 7.4
Cisco Vsc3000	Up to 9.1
Cisco Vspt	All versions

References (6)

http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtml

Source: cve@mitre.org

PatchVendor Advisory

http://www.iss.net/security_center/static/7912.php

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/3897

Source: cve@mitre.org

Patch

http://www.cisco.com/warp/public/707/Solaris-for-MGC-pub.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.iss.net/security_center/static/7912.php

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/3897

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.