Lucene search

MitreCVE-2007-4292

HistoryAug 09, 2007 - 9:17 p.m.

CVE-2007-4292

2007-08-0921:17:00

mitre

web.nvd.nist.gov

cisco

ios

memory leaks

denial of service

sip

cve-2007-4292

security vulnerability

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

0.032

Percentile

91.4%

JSON

Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1) CSCsf11855, (2) CSCeb21064, (3) CSCse40276, (4) CSCse68355, (5) CSCsf30058, (6) CSCsb24007, and (7) CSCsc60249.

Affected configurations

Nvd

Node

ciscoiosMatch12.0

ciscoiosMatch12.1

ciscoiosMatch12.2

ciscoiosMatch12.3

ciscoiosMatch12.4

VendorProductVersionCPE
ciscoios12.0cpe:2.3:o:cisco:ios:12.0:*:*:*:*:*:*:*
ciscoios12.1cpe:2.3:o:cisco:ios:12.1:*:*:*:*:*:*:*
ciscoios12.2cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*
ciscoios12.3cpe:2.3:o:cisco:ios:12.3:*:*:*:*:*:*:*
ciscoios12.4cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	12.0	cpe:2.3:o:cisco:ios:12.0:::::::*
cisco	ios	12.1	cpe:2.3:o:cisco:ios:12.1:::::::*
cisco	ios	12.2	cpe:2.3:o:cisco:ios:12.2:::::::*
cisco	ios	12.3	cpe:2.3:o:cisco:ios:12.3:::::::*
cisco	ios	12.4	cpe:2.3:o:cisco:ios:12.4:::::::*

References

osvdb.org/36670

osvdb.org/36671

osvdb.org/36672

osvdb.org/36673

osvdb.org/36674

osvdb.org/36675

osvdb.org/36676

secunia.com/advisories/26363

securitytracker.com/id?1018533

www.cisco.com/en/US/products/products_security_advisory09186a0080899653.shtml

www.securityfocus.com/bid/25239

www.vupen.com/english/advisories/2007/2816

exchange.xforce.ibmcloud.com/vulnerabilities/35890

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5781

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

6.6

Confidence

High

EPSS

0.032

Percentile

91.4%

JSON

Related for CVE-2007-4292