Lucene search

[email protected]CVE-2007-0964

HistoryFeb 16, 2007 - 12:28 a.m.

CVE-2007-0964

2007-02-1600:28:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2007-0964

cisco

fwsm

denial of service

https

vulnerability

7.1 High

AI Score

Confidence

High

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.01 Low

EPSS

Percentile

83.1%

JSON

Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use “aaa authentication match” or “aaa authentication include”, allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request.

CPENameOperatorVersion
cisco:firewall_services_modulecisco firewall services moduleeq3.1

CPE	Name	Operator	Version
cisco:firewall_services_module	cisco firewall services module	eq	3.1

References

secunia.com/advisories/24172

www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

www.securityfocus.com/bid/22561

www.vupen.com/english/advisories/2007/0609

7.1 High

AI Score

Confidence

High

5.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

0.01 Low

EPSS

Percentile

83.1%

JSON

Related for CVE-2007-0964

cisco1 prion1 securityvulns1