6.8 Medium
AI Score
Confidence
High
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
0.025 Low
EPSS
Percentile
90.0%
Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet.
secunia.com/advisories/27329
www.cisco.com/en/US/products/products_security_response09186a00808de8bb.html
www.securityfocus.com/bid/26139
www.securitytracker.com/id?1018842
www.vupen.com/english/advisories/2007/3566
exchange.xforce.ibmcloud.com/vulnerabilities/37300
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5288