Lucene search

PRIOn knowledge basePRION:CVE-2007-3923

HistoryJul 21, 2007 - 12:30 a.m.

Code injection

2007-07-2100:30:00

PRIOn knowledge base

www.prio-n.com

7.2 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.025 Low

EPSS

Percentile

89.8%

JSON

The Common Internet File System (CIFS) optimization in Cisco Wide Area Application Services (WAAS) 4.0.7 and 4.0.9, as used by Cisco WAE appliance and the NM-WAE-502 network module, when Edge Services are configured, allows remote attackers to cause a denial of service (loss of service) via a flood of TCP SYN packets to port (1) 139 or (2) 445.

CPENameOperatorVersion
wide_area_application_serviceseq4.0.7
wide_area_application_serviceseq4.0.9

CPE	Name	Operator	Version
	wide_area_application_services	eq	4.0.7
	wide_area_application_services	eq	4.0.9

References

secunia.com/advisories/26122

www.cisco.com/warp/public/707/cisco-sa-20070718-waas.shtml

www.osvdb.org/36120

www.securityfocus.com/bid/24956

www.securitytracker.com/id?1018416

www.vupen.com/english/advisories/2007/2572

exchange.xforce.ibmcloud.com/vulnerabilities/35477

7.2 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.025 Low

EPSS

Percentile

89.8%

JSON

Related for PRION:CVE-2007-3923