Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2007-4285 | First vendor Publication | 2007-08-09 |
| Vendor | Cve | Last vendor Modification | 2017-09-29 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 9 | Attack Range | Network |
| Cvss Impact Score | 8.5 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-4285 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:5840 | |||
| Oval ID: | oval:org.mitre.oval:def:5840 | ||
| Title: | Cisco IOS 12.3 IPv6 Packet Processing Information Leakage Vulnerability | ||
| Description: | Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header. | ||
| Family: | ios | Class: | vulnerability |
| Reference(s): | CVE-2007-4285 | Version: | 1 |
| Platform(s): | Cisco IOS | Product(s): | |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Os | 4 |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 36666 | Cisco IOS Crafted IPv6 Routing Header Remote DoS |
| 36665 | Cisco IOS Crafted IPv6 Routing Header Remote Information Disclosure |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2013-12-14 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20070808-IOS-IPv6-leak-iosxr.nasl - Type : ACT_GATHER_INFO |
| 2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20070808-IOS-IPv6-leak.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2021-05-04 12:06:15 |
|
| 2021-04-22 01:06:47 |
|
| 2020-05-23 00:20:16 |
|
| 2017-09-29 09:23:10 |
|
| 2017-07-29 12:02:27 |
|
| 2016-04-26 16:28:42 |
|
| 2014-02-17 10:41:17 |
|
| 2013-05-11 10:33:47 |
|
