CVE-2005-4826

Sažetak

Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(22)EA3 on Catalyst 2950T switches allows remote attackers to cause a denial of service (device reboot) via a crafted Subset-Advert message packet, a different issue than CVE-2006-4774, CVE-2006-4775, and CVE-2006-4776.

Reference

http://osvdb.org/33013
http://secunia.com/advisories/23892
http://securitytracker.com/id?1017568
http://www.blackhat.com/html/bh-europe-05/bh-eu-05-speakers.html#Berrueta
http://www.cisco.com/en/US/products/products_security_response09186a00807d1a81.html
http://www.s21sec.com/en/avisos/s21sec-034-en.txt
http://www.securityfocus.com/archive/1/458240/100/0/threaded
http://www.securityfocus.com/archive/1/458554/100/0/threaded
http://www.securityfocus.com/bid/22268
http://www.vupen.com/english/advisories/2007/0414
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5544

CVSS

Base:	6.1
Impact:	6.9
Exploitability:	6.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	COMPLETE

CVSS vektor

AV:A/AC:L/Au:N/C:N/I:N/A:C

Zadnje važnije ažuriranje

19-10-2018 - 15:41

Objavljeno

31-12-2005 - 05:00