ID
VAR-200407-0043
CVE
CVE-2004-0710
TITLE
Cisco IPsec VPNSM vulnerable to DoS via malformed IKE packet
Trust: 0.8
DESCRIPTION
IP Security VPN Services Module (VPNSM) in Cisco Catalyst 6500 Series Switch and the Cisco 7600 Series Internet Routers running IOS before 12.2(17b)SXA, before 12.2(17d)SXB, or before 12.2(14)SY03 could allow remote attackers to cause a denial of service (device crash and reload) via a malformed Internet Key Exchange (IKE) packet. A vulnerability in a Cisco VPN module can allow a remote attacker to cause a denial-of-service to the device in which the module is installed. Cisco IOS has been reported prone to a remote denial of service vulnerability. When one of the aforementioned appliances processes a malformed IKE packet, IOS will crash and reload. It is reported that Cisco IOS devices with Crypto support will process IKE messages by default. Cisco IOS is a very widely deployed network operating system. Many Cisco devices run IOS
Trust: 2.7
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2sxa | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2\(14\)za | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2\(17a\)sxa | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2sy | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2za | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2\(14\)za2 | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2sxb | Trust: 1.6 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2\(14\)sy | Trust: 1.6 |
| vendor: | cisco | model: | - | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 12.2 | Trust: 0.8 |
| vendor: | cisco | model: | ios 12.2za | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2sy | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2sxb | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2sxa | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sx | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sxa | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 za2 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 za | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sy | scope: | - | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sxb | scope: | ne | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sxa | scope: | ne | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 za8 | scope: | ne | version: | - | Trust: 0.3 |
| vendor: | cisco | model: | ios 12.2 sy03 | scope: | ne | version: | - | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | NVD-CWE-Other | Trust: 1.0 |
THREAT TYPE
remote
Trust: 0.6
TYPE
other
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20040408-vpnsm | url: | http://www.cisco.com/warp/public/707/cisco-sa-20040408-vpnsm.shtml | Trust: 0.8 |
EXTERNAL IDS
| db: | CERT/CC | id: | VU#904310 | Trust: 3.3 |
| db: | NVD | id: | CVE-2004-0710 | Trust: 2.8 |
| db: | BID | id: | 10083 | Trust: 2.8 |
| db: | JVNDB | id: | JVNDB-2004-000114 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-200407-073 | Trust: 0.7 |
| db: | OVAL | id: | OVAL:ORG.MITRE.OVAL:DEF:5696 | Trust: 0.6 |
| db: | XF | id: | 15797 | Trust: 0.6 |
| db: | CISCO | id: | 20040408 CISCO IPSEC VPN SERVICES MODULE MALFORMED IKE PACKET VULNERABILITY | Trust: 0.6 |
| db: | VULHUB | id: | VHN-9140 | Trust: 0.1 |
REFERENCES
| url: | http://www.securityfocus.com/bid/10083 | Trust: 2.5 |
| url: | http://www.kb.cert.org/vuls/id/904310 | Trust: 2.5 |
| url: | http://www.cisco.com/warp/public/707/cisco-sa-20040408-vpnsm.shtml | Trust: 2.0 |
| url: | https://oval.cisecurity.org/repository/search/definition/oval%3aorg.mitre.oval%3adef%3a5696 | Trust: 1.1 |
| url: | https://exchange.xforce.ibmcloud.com/vulnerabilities/15797 | Trust: 1.1 |
| url: | about vulnerability notes | Trust: 0.8 |
| url: | contact us about this vulnerability | Trust: 0.8 |
| url: | provide a vendor statement | Trust: 0.8 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2004-0710 | Trust: 0.8 |
| url: | http://nvd.nist.gov/nvd.cfm?cvename=cve-2004-0710 | Trust: 0.8 |
| url: | http://xforce.iss.net/xforce/xfdb/15797 | Trust: 0.6 |
| url: | http://oval.mitre.org/repository/data/getdef?id=oval:org.mitre.oval:def:5696 | Trust: 0.6 |
CREDITS
Cisco Security bulletin
Trust: 0.6
SOURCES
| db: | CERT/CC | id: | VU#904310 |
| db: | VULHUB | id: | VHN-9140 |
| db: | BID | id: | 10083 |
| db: | JVNDB | id: | JVNDB-2004-000114 |
| db: | CNNVD | id: | CNNVD-200407-073 |
| db: | NVD | id: | CVE-2004-0710 |
LAST UPDATE DATE
2025-04-03T22:24:07.761000+00:00
SOURCES UPDATE DATE
| db: | CERT/CC | id: | VU#904310 | date: | 2004-06-15T00:00:00 |
| db: | VULHUB | id: | VHN-9140 | date: | 2017-10-11T00:00:00 |
| db: | BID | id: | 10083 | date: | 2009-07-12T04:06:00 |
| db: | JVNDB | id: | JVNDB-2004-000114 | date: | 2007-04-01T00:00:00 |
| db: | CNNVD | id: | CNNVD-200407-073 | date: | 2009-03-04T00:00:00 |
| db: | NVD | id: | CVE-2004-0710 | date: | 2025-04-03T01:03:51.193 |
SOURCES RELEASE DATE
| db: | CERT/CC | id: | VU#904310 | date: | 2004-06-09T00:00:00 |
| db: | VULHUB | id: | VHN-9140 | date: | 2004-07-27T00:00:00 |
| db: | BID | id: | 10083 | date: | 2004-04-08T00:00:00 |
| db: | JVNDB | id: | JVNDB-2004-000114 | date: | 2007-04-01T00:00:00 |
| db: | CNNVD | id: | CNNVD-200407-073 | date: | 2004-04-08T00:00:00 |
| db: | NVD | id: | CVE-2004-0710 | date: | 2004-07-27T04:00:00 |