Lucene search

MitreCVE-2007-5134

HistorySep 27, 2007 - 7:17 p.m.

CVE-2007-5134

2007-09-2719:17:00

CWE-264

mitre

web.nvd.nist.gov

cisco

catalyst

6500

7600

devices

vulnerability

nvd

cve-2007-5134

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.009

Percentile

83.2%

JSON

Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended.

Affected configurations

Nvd

Node

ciscocatalyst_6500

ciscocatalyst_6500_ws-svc-nam-1Match2.2\(1a\)

ciscocatalyst_6500_ws-svc-nam-1Match3.1\(1a\)

ciscocatalyst_6500_ws-svc-nam-2Match2.2\(1a\)

ciscocatalyst_6500_ws-svc-nam-2Match3.1\(1a\)

ciscocatalyst_6500_ws-x6380-namMatch2.1\(2\)

ciscocatalyst_6500_ws-x6380-namMatch3.1\(1a\)

ciscocatalyst_7600

ciscocatalyst_7600sup2_msfc2

ciscocatalyst_7600sup720_msfc3

ciscocatalyst_7600_ws-svc-nam-1Match2.2\(1a\)

ciscocatalyst_7600_ws-svc-nam-1Match3.1\(1a\)

ciscocatalyst_7600_ws-svc-nam-2Match2.2\(1a\)

ciscocatalyst_7600_ws-svc-nam-2Match3.1\(1a\)

ciscocatalyst_7600_ws-x6380-namMatch2.1\(2\)

ciscocatalyst_7600_ws-x6380-namMatch3.1\(1a\)

ciscocatosMatch5.4\(1\)

ciscocatosMatch7.5\(1\)

ciscocatosMatch7.6\(1\)

VendorProductVersionCPE
ciscocatalyst_6500*cpe:2.3:h:cisco:catalyst_6500:*:*:*:*:*:*:*:*
ciscocatalyst_6500_ws-svc-nam-12.2(1a)cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:2.2\(1a\):*:*:*:*:*:*:*
ciscocatalyst_6500_ws-svc-nam-13.1(1a)cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:3.1\(1a\):*:*:*:*:*:*:*
ciscocatalyst_6500_ws-svc-nam-22.2(1a)cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:2.2\(1a\):*:*:*:*:*:*:*
ciscocatalyst_6500_ws-svc-nam-23.1(1a)cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:3.1\(1a\):*:*:*:*:*:*:*
ciscocatalyst_6500_ws-x6380-nam2.1(2)cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:2.1\(2\):*:*:*:*:*:*:*
ciscocatalyst_6500_ws-x6380-nam3.1(1a)cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:3.1\(1a\):*:*:*:*:*:*:*
ciscocatalyst_7600*cpe:2.3:h:cisco:catalyst_7600:*:*:*:*:*:*:*:*
ciscocatalyst_7600*cpe:2.3:h:cisco:catalyst_7600:*:*:sup2_msfc2:*:*:*:*:*
ciscocatalyst_7600*cpe:2.3:h:cisco:catalyst_7600:*:*:sup720_msfc3:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	catalyst_6500	*	cpe:2.3:h:cisco:catalyst_6500::::::::
cisco	catalyst_6500_ws-svc-nam-1	2.2(1a)	cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:2.2\(1a\):::::::*
cisco	catalyst_6500_ws-svc-nam-1	3.1(1a)	cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-1:3.1\(1a\):::::::*
cisco	catalyst_6500_ws-svc-nam-2	2.2(1a)	cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:2.2\(1a\):::::::*
cisco	catalyst_6500_ws-svc-nam-2	3.1(1a)	cpe:2.3:h:cisco:catalyst_6500_ws-svc-nam-2:3.1\(1a\):::::::*
cisco	catalyst_6500_ws-x6380-nam	2.1(2)	cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:2.1\(2\):::::::*
cisco	catalyst_6500_ws-x6380-nam	3.1(1a)	cpe:2.3:h:cisco:catalyst_6500_ws-x6380-nam:3.1\(1a\):::::::*
cisco	catalyst_7600	*	cpe:2.3:h:cisco:catalyst_7600::::::::
cisco	catalyst_7600	*	cpe:2.3:h:cisco:catalyst_7600:::sup2_msfc2:::::*
cisco	catalyst_7600	*	cpe:2.3:h:cisco:catalyst_7600:::sup720_msfc3:::::*

Rows per page:

1-10 of 191

References

seclists.org/fulldisclosure/2007/Sep/0573.html

secunia.com/advisories/26988

securitytracker.com/id?1018742

www.cisco.com/warp/public/707/cisco-sr-20070926-lb.shtml

www.securityfocus.com/bid/25822

www.securitytracker.com/id?1018743

www.vupen.com/english/advisories/2007/3276

exchange.xforce.ibmcloud.com/vulnerabilities/36826

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.9

Confidence

Low

EPSS

0.009

Percentile

83.2%

JSON

Related for CVE-2007-5134