CVE-2011-3318

Cisco Video Surveillance 2421 and 2500 series cameras with software 1.1.x and 2.x before 2.4.0 and Video Surveillance 2600 series cameras with software before 4.2.0-13 allow remote attackers to cause a denial of service (device reload) by sending crafted RTSP packets over TCP, aka Bug IDs CSCtj96312, CSCtj39462, and CSCtl80175.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 61%
VendorProductVersion
ciscovideo_surveillance_2421
-
ciscovideo_surveillance_2500
-
ciscovideo_surveillance_software
1.1.0
ciscovideo_surveillance_software
1.2.1
ciscovideo_surveillance_software
2.0.0
ciscovideo_surveillance_software
2.1
ciscovideo_surveillance_software
2.1.2
ciscovideo_surveillance_software
2.1.3
ciscovideo_surveillance_software
2.1.4
ciscovideo_surveillance_software
2.1.6
ciscovideo_surveillance_software
2.1.7
ciscovideo_surveillance_software
2.3.0
ciscovideo_surveillance_software
2.3.1
ciscovideo_surveillance_2600
-
ciscovideo_surveillance_software
𝑥
≤ 4.2.0
ciscovideo_surveillance_software
4.0.1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-camera
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20111026-camera