Lucene search

[email protected]NVD:CVE-2007-6093

HistoryNov 22, 2007 - 12:46 a.m.

CVE-2007-6093

2007-11-2200:46:00

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.016

Percentile

87.5%

JSON

The SRTP implementation in Ingate Firewall before 4.6.0 and SIParator before 4.6.0 allows remote attackers to cause a denial of service (kernel crash) via an RTCP index that is “much more than expected.”

Affected configurations

Nvd

Node

ingateingate_firewallRange≤4.5.2

ingateingate_siparatorRange≤4.5.2

VendorProductVersionCPE
ingateingate_firewall*cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*
ingateingate_siparator*cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ingate	ingate_firewall	*	cpe:2.3:h:ingate:ingate_firewall::::::::
ingate	ingate_siparator	*	cpe:2.3:h:ingate:ingate_siparator::::::::

References

osvdb.org/42174

secunia.com/advisories/27688

www.ingate.com/relnote-460.php

www.securityfocus.com/bid/26486

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:N/I:N/A:C

AI Score

6.7

Confidence

High

EPSS

0.016

Percentile

87.5%

JSON

Related for NVD:CVE-2007-6093

cve1 prion1 cvelist1