ID CVE-2007-5552
Summary Integer overflow in Cisco IOS allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: as of 20071016, the only disclosure is a vague pre-advisory with no actionable information. However, since it is from a well-known researcher, it is being assigned a CVE identifier for tracking purposes.
References
Vulnerable Configurations
  • cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
    cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
CVSS
Base: 9.3 (as of 05-09-2008 - 21:31)
Impact:
Exploitability:
CWE CWE-189
CAPEC
Access
VectorComplexityAuthentication
NETWORK MEDIUM NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
cvss-vector via4 AV:N/AC:M/Au:N/C:C/I:C/A:C
refmap via4
misc http://www.irmplc.com/index.php/111-Vendor-Alerts
Last major update 05-09-2008 - 21:31
Published 18-10-2007 - 20:17
Last modified 05-09-2008 - 21:31
Back to Top