- Description
- The Internet Streamer application in Cisco Content Delivery System (CDS) with software 2.5.7, 2.5.8, and 2.5.9 before build 126 allows remote attackers to cause a denial of service (Web Engine crash) via a crafted URL, aka Bug IDs CSCtg67333 and CSCth25341.
- Source
- psirt@cisco.com
- NVD status
- Deferred
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
- nvd@nist.gov
- CWE-399
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:cisco:content_delivery_system_engine:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C75804F4-EBD1-46C8-897C-99CDFC00D540"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:content_delivery_system:2.5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B068E8D5-F4C0-453A-9945-228D7C809186"
},
{
"criteria": "cpe:2.3:a:cisco:content_delivery_system:2.5.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "10886BDB-23D1-487D-B130-962F2DC4A95B"
},
{
"criteria": "cpe:2.3:a:cisco:content_delivery_system:2.5.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E7737B5-7114-404A-838C-E709C4C306B1"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]