oval:org.mitre.oval:def:5036

Definition Id: oval:org.mitre.oval:def:5036

Oval ID:	oval:org.mitre.oval:def:5036
Title:	Cisco IOS FTP Server Authentication Bypass Vulnerability
Description:	The FTP Server in Cisco IOS 11.3 through 12.4 does not properly check user authorization, which allows remote attackers to execute arbitrary code, and have other impact including reading startup-config, as demonstrated by a crafted MKD command that involves access to a VTY device and overflows a buffer, aka bug ID CSCek55259.
Family:	ios	Class:	vulnerability
Reference(s):	CVE-2007-2586	Version:	2
Platform(s):	Cisco IOS	Product(s):
Definition Synopsis:
IOS vulnerable versions AND NOT IOS vulnerable versions AND config contains: ftp-server enable