Details of VAR-200306-0072

ID

VAR-200306-0072

CVE

CVE-2003-0305

TITLE

Cisco IOS Service Assurance Agent (SAA) Service denial vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200306-012

DESCRIPTION

The Service Assurance Agent (SAA) in Cisco IOS 12.0 through 12.2, aka Response Time Reporter (RTR), allows remote attackers to cause a denial of service (crash) via malformed RTR packets to port 1967

Trust: 1.26

sources: NVD: CVE-2003-0305 // BID: 87154 // VULHUB: VHN-7134

AFFECTED PRODUCTS

vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10.5\)ec	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10\)ey	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(9\)ea	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10\)e	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(8\)ea	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10\)	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10\)ex	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10\)ec	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(21\)sx	Trust: 1.6
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(21\)sl	Trust: 1.6
vendor:	cisco	model:	ios 12.1	scope:	-	version:	-	Trust: 1.5
vendor:	cisco	model:	ios 12.0 s	scope:	-	version:	-	Trust: 1.2
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(12b\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(7a\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(7\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(18\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(13\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(15\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(17\)sl	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(9\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(14\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(16\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(19\)sl	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(12c\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(19\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(17\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(21\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(11\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(9.4\)da	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(7\)da	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(12a\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(15\)sc	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(7b\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(15\)sl	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(16\)sc	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(11b\)e	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(16\)st	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(20\)sp	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(11b\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(18\)sl	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(7c\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(14.5\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(12\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(11.5\)e	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(10.5\)s	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(10a\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.2\(6.8a\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.1\(11a\)	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(20\)sl	Trust: 1.0
vendor:	cisco	model:	ios	scope:	eq	version:	12.0\(19\)sp	Trust: 1.0
vendor:	cisco	model:	ios 12.2	scope:	-	version:	-	Trust: 0.9
vendor:	cisco	model:	ios 12.1 e	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	ios 12.2 s	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.2 da	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.2(7)	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1(14)	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1(13)	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1(12)	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	12.1(11)	Trust: 0.3
vendor:	cisco	model:	ios 12.1 ey	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.1 ex	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0 sx	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios 12.0 st	scope:	-	version:	-	Trust: 0.3

sources: BID: 87154 // CNNVD: CNNVD-200306-012 // NVD: CVE-2003-0305

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2003-0305
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200306-012
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-7134
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2003-0305
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-7134
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-7134 // CNNVD: CNNVD-200306-012 // NVD: CVE-2003-0305

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2003-0305

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200306-012

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200306-012

EXTERNAL IDS

db:	NVD	id:	CVE-2003-0305	Trust: 2.0
db:	CNNVD	id:	CNNVD-200306-012	Trust: 0.7
db:	CISCO	id:	20030515 CISCO SECURITY ADVISORY: CISCO IOS SOFTWARE PROCESSING OF SAA PACKETS	Trust: 0.6
db:	OVAL	id:	OVAL:ORG.MITRE.OVAL:DEF:5608	Trust: 0.6
db:	BID	id:	87154	Trust: 0.4
db:	VULHUB	id:	VHN-7134	Trust: 0.1

sources: VULHUB: VHN-7134 // BID: 87154 // CNNVD: CNNVD-200306-012 // NVD: CVE-2003-0305

REFERENCES

url:	http://www.cisco.com/warp/public/707/cisco-sa-20030515-saa.shtml	Trust: 2.0
url:	https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5608	Trust: 1.1
url:	http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:5608	Trust: 0.6

sources: VULHUB: VHN-7134 // BID: 87154 // CNNVD: CNNVD-200306-012 // NVD: CVE-2003-0305

CREDITS

Unknown

Trust: 0.3

sources: BID: 87154

SOURCES

db:	VULHUB	id:	VHN-7134
db:	BID	id:	87154
db:	CNNVD	id:	CNNVD-200306-012
db:	NVD	id:	CVE-2003-0305

LAST UPDATE DATE

2024-08-14T14:35:54.644000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-7134	date:	2017-10-11T00:00:00
db:	BID	id:	87154	date:	2003-06-09T00:00:00
db:	CNNVD	id:	CNNVD-200306-012	date:	2009-03-04T00:00:00
db:	NVD	id:	CVE-2003-0305	date:	2017-10-11T01:29:08.667

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-7134	date:	2003-06-09T00:00:00
db:	BID	id:	87154	date:	2003-06-09T00:00:00
db:	CNNVD	id:	CNNVD-200306-012	date:	2003-06-09T00:00:00
db:	NVD	id:	CVE-2003-0305	date:	2003-06-09T04:00:00