Lucene search

[email protected]CVE-2007-4654

HistorySep 04, 2007 - 10:17 p.m.

CVE-2007-4654

2007-09-0422:17:00

CWE-399

[email protected]

web.nvd.nist.gov

cve-2007-4654

sshield

openssh

cisco

webns

css

denial of service

remote attackers

vulnerability

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

79.8%

JSON

Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of service (connection slot exhaustion and device crash) via a series of large packets designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144), possibly a related issue to CVE-2002-1024.

CPENameOperatorVersion
cisco:webnscisco webnseq8.20.0.1
openbsd:opensshopenbsd openssheq3.0.2p1
teamf1:sshieldteamf1 sshieldeq1.6.1

CPE	Name	Operator	Version
cisco:webns	cisco webns	eq	8.20.0.1
openbsd:openssh	openbsd openssh	eq	3.0.2p1
teamf1:sshield	teamf1 sshield	eq	1.6.1

References

osvdb.org/45873

securityreason.com/securityalert/3091

www.securityfocus.com/archive/1/478165/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/44542

6.8 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

79.8%

JSON

Related for CVE-2007-4654

prion1 cve3 nessus7 securityvulns3 cert2