Lucene search

MitreCVE-2007-4285

HistoryAug 09, 2007 - 9:17 p.m.

CVE-2007-4285

2007-08-0921:17:00

mitre

web.nvd.nist.gov

cve-2007-4285

cisco ios

cisco ios xr

vulnerability

remote attackers

sensitive information

denial of service

ipv6

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

AI Score

6.6

Confidence

High

EPSS

0.02

Percentile

89.1%

JSON

Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header.

Affected configurations

Nvd

Node

ciscoiosMatch12.0

ciscoiosMatch12.1

ciscoiosMatch12.2

ciscoiosMatch12.3

VendorProductVersionCPE
ciscoios12.0cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
ciscoios12.1cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios12.3cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.0	cpe:2.3:o:cisco:ios:12.0:::::::*
cisco	ios	12.1	cpe:2.3:o:cisco:ios:12.1:::::::*
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	12.3	cpe:2.3:o:cisco:ios:12.3:::::::*

References

secunia.com/advisories/26359

www.cisco.com/en/US/products/products_security_advisory09186a0080899647.shtml

www.securitytracker.com/id?1018542

www.vupen.com/english/advisories/2007/2819

exchange.xforce.ibmcloud.com/vulnerabilities/35906

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5840

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

AI Score

6.6

Confidence

High

EPSS

0.02

Percentile

89.1%

JSON

Related for CVE-2007-4285