Lucene search

MitreCVE-2007-4430

HistoryAug 20, 2007 - 7:17 p.m.

CVE-2007-4430

2007-08-2019:17:00

CWE-20

mitre

web.nvd.nist.gov

cve-2007-4430

cisco

ios

denial of service

bgp

regular expressions

nvd

vulnerability

remote attacks

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.025

Percentile

90.2%

JSON

Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart and BGP routing table rebuild) via certain regular expressions in a “show ip bgp regexp” command. NOTE: unauthenticated remote attacks are possible in environments with anonymous telnet and Looking Glass access.

Affected configurations

Nvd

Node

ciscocli

ciscocbos

ciscocbosMatch12.1

ciscocbosMatch12.2

ciscoids

ciscoiosMatch10.0

ciscoiosMatch10.3

ciscoiosMatch11.0

ciscoiosMatch11.1

ciscoiosMatch11.2

ciscoiosMatch12.0

ciscoiosMatch12.1

ciscoiosMatch12.2

ciscoiosMatch12.3

ciscoiosMatch12.4

ciscoios_xr

ciscoios_xrMatch2.0

ciscoios_xrMatch3.0

ciscoios_xrMatch3.1

ciscoios_xrMatch3.2

ciscoios_xrMatch3.3

ciscoios_xrMatch3.4

VendorProductVersionCPE
ciscocli*cpe:2.3:a:cisco:cli:*:*:*:*:*:*:*:*
ciscocbos*cpe:2.3:o:cisco:cbos:*:*:*:*:*:*:*:*
ciscocbos12.1cpe:2.3:o:cisco:cbos:12.1:*:*:*:*:*:*:*
ciscocbos12.2cpe:2.3:o:cisco:cbos:12.2:*:*:*:*:*:*:*
ciscoids*cpe:2.3:o:cisco:ids:*:*:*:*:*:*:*:*
ciscoios10.0cpe:2.3:o:cisco:ios:10.0:*:*:*:*:*:*:*
ciscoios10.3cpe:2.3:o:cisco:ios:10.3:*:*:*:*:*:*:*
ciscoios11.0cpe:2.3:o:cisco:ios:11.0:*:*:*:*:*:*:*
ciscoios11.1cpe:2.3:o:cisco:ios:11.1:*:*:*:*:*:*:*
ciscoios11.2cpe:2.3:o:cisco:ios:11.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	cli	*	cpe:2.3:a:cisco:cli::::::::
cisco	cbos	*	cpe:2.3:o:cisco:cbos::::::::
cisco	cbos	12.1	cpe:2.3:o:cisco:cbos:12.1:::::::*
cisco	cbos	12.2	cpe:2.3:o:cisco:cbos:12.2:::::::*
cisco	ids	*	cpe:2.3:o:cisco:ids::::::::
cisco	ios	10.0	cpe:2.3:o:cisco:ios:10.0:::::::*
cisco	ios	10.3	cpe:2.3:o:cisco:ios:10.3:::::::*
cisco	ios	11.0	cpe:2.3:o:cisco:ios:11.0:::::::*
cisco	ios	11.1	cpe:2.3:o:cisco:ios:11.1:::::::*
cisco	ios	11.2	cpe:2.3:o:cisco:ios:11.2:::::::*

Rows per page:

1-10 of 221

References

forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Network%20Infrastructure&topic=WAN%2C%20Routing%20and%20Switching&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.1ddf7bc9

secunia.com/advisories/26798

www.cisco.com/en/US/products/products_security_response09186a00808bb91c.html

www.heise-security.co.uk/news/94526/

www.securityfocus.com/bid/25352

www.securitytracker.com/id?1018685

www.vupen.com/english/advisories/2007/3136

puck.nether.net/pipermail/cisco-nsp/2007-August/043002.html

puck.nether.net/pipermail/cisco-nsp/2007-August/043010.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.7

Confidence

High

EPSS

0.025

Percentile

90.2%

JSON

Related for CVE-2007-4430