CVE-2007-4285

Sažetak

Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header.

Reference

http://secunia.com/advisories/26359
http://www.cisco.com/en/US/products/products_security_advisory09186a0080899647.shtml
http://www.securitytracker.com/id?1018542
http://www.vupen.com/english/advisories/2007/2819
https://exchange.xforce.ibmcloud.com/vulnerabilities/35906
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5840

CVSS

Base:	9.0
Impact:	8.5
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:C

Zadnje važnije ažuriranje

29-09-2017 - 01:29

Objavljeno

09-08-2007 - 21:17