Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

CVE-2014-0669

Published

10 years ago

Last Modified

6 years ago

CVSSv2.0 Severity

Medium

Impact Analysis

Share on Facebook
Share on LinkedIn
Share on Twitter

The Wireless Session Protocol (WSP) feature in the Gateway GPRS Support Node (GGSN) component on Cisco ASR 5000 series devices allows remote attackers to bypass intended Top-Up payment restrictions via unspecified WSP packets, aka Bug ID CSCuh28371..

CVSSv2.0 Score

Severity: Medium
Base Score: 5/10
Exploit Score: 10/10
Access Vector: Network
Access Complexity: Low
Authentication Required: None
Impact Score: 2.9/10
Confidentiality Impact: None
Availability Impact: None
Integrity Impact: Partial

Products Affected

CPE	Affected	Vulnerable	Excluding	Edit
cpe:2.3:a:cisco:asr_5000_series_software:-:::::::*	Yes	-	-

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0669
http://www.securitytracker.com/id/1029666
http://www.securityfocus.com/bid/65052
http://tools.cisco.com/security/center/viewAlert.x?alertId=32513
http://secunia.com/advisories/56546
http://osvdb.org/102318
https://exchange.xforce.ibmcloud.com/vulnerabilities/90614