ID |
CVE-2007-0968
|
Summary |
Unspecified vulnerability in Cisco Firewall Services Module (FWSM) before 2.3(4.7) and 3.x before 3.1(3.1) causes the access control entries (ACE) in an ACL to be improperly evaluated, which allows remote authenticated users to bypass intended certain ACL protections. |
References |
|
Vulnerable Configurations |
|
CVSS |
Base: | 9.0 (as of 29-07-2017 - 01:30) |
Impact: | |
Exploitability: | |
|
CWE |
NVD-CWE-Other |
CAPEC |
|
Access |
Vector | Complexity | Authentication |
NETWORK |
LOW |
SINGLE |
|
Impact |
Confidentiality | Integrity | Availability |
COMPLETE |
COMPLETE |
COMPLETE |
|
cvss-vector
via4
|
AV:N/AC:L/Au:S/C:C/I:C/A:C
|
refmap
via4
|
bid | 22561 | cisco | 20070214 Multiple Vulnerabilities in Firewall Services Module | sectrack | 1017650 | secunia | 24172 | vupen | ADV-2007-0609 | xf | cisco-fwsm-acl-security-bypass(32521) |
|
Last major update |
29-07-2017 - 01:30 |
Published |
16-02-2007 - 00:28 |
Last modified |
29-07-2017 - 01:30 |