Lucene search

[email protected]NVD:CVE-2007-0964

HistoryFeb 16, 2007 - 12:28 a.m.

CVE-2007-0964

2007-02-1600:28:00

[email protected]

web.nvd.nist.gov

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

Cisco FWSM 3.x before 3.1(3.18), when authentication is configured to use “aaa authentication match” or “aaa authentication include”, allows remote attackers to cause a denial of service (device reboot) via a malformed HTTPS request.

Affected configurations

Nvd

Node

ciscofirewall_services_moduleMatch3.1

VendorProductVersionCPE
ciscofirewall_services_module3.1cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	firewall_services_module	3.1	cpe:2.3:h:cisco:firewall_services_module:3.1:::::::*

References

secunia.com/advisories/24172

www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml

www.securityfocus.com/bid/22561

www.vupen.com/english/advisories/2007/0609

CVSS2

5.4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:H/Au:N/C:N/I:N/A:C

AI Score

6.9

Confidence

High

EPSS

0.01

Percentile

84.0%

JSON

Related for NVD:CVE-2007-0964

prion1 cisco1 cve1 cvelist1 securityvulns1