CVE-2010-2825

Published: Aug 17, 2010Modified: Apr 29, 2026

7.8

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability: 10.0 / Impact: 6.9

Source: NVD

Description

Unspecified vulnerability in the SIP inspection feature on the Cisco Application Control Engine (ACE) Module with software A2(1.x) before A2(1.6), A2(2.x) before A2(2.3), and A2(3.x) before A2(3.1) for Catalyst 6500 series switches and 7600 series routers, and the Cisco Application Control Engine (ACE) 4710 appliance with software before A3(2.4), allows remote attackers to cause a denial of service (device reload) via crafted SIP packets over (1) TCP or (2) UDP, aka Bug IDs CSCta65603 and CSCta71569.

Affected (9)

Products: Cisco: Ace Module, Ace 4710

Cisco

2 products

Ace Module

Ace 4710

Configuration A

3 vulnerable · 2 platform

Vulnerable Software	Affected Versions
Cisco Ace Module	Up to a2\(3.1.0\)
Cisco Ace Module	Up to a2\(3.1.6\)
Cisco Ace Module	Up to a2\(3.2.2.0\)

Running on/with	Platform Versions
Cisco Catalyst 6500	All versions
Cisco Catalyst 7600	All versions

Configuration B

6 vulnerable

Vulnerable Software	Affected Versions
Cisco Ace 4710	All versions
Cisco Ace 4710	Version a1(2.0)
Cisco Ace 4710	Version a1(2.3)
Cisco Ace 4710	Version a1(8.0)
Cisco Ace 4710	Version a3(1.0)
Cisco Ace 4710	Version a3(2.0)

References (2)

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml

Source: psirt@cisco.com

Vendor Advisory

http://www.cisco.com/en/US/products/products_security_advisory09186a0080b4091d.shtml

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.