Executive Summary

Informations
Name CVE-2007-5571 First vendor Publication 2007-10-18
Vendor Cve Last vendor Modification 2024-11-21

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score NA
Base Score NA Environmental Score NA
impact SubScore NA Temporal Score NA
Exploitabality Sub Score NA
 
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score 6.8 Attack Range Network
Cvss Impact Score 6.4 Attack Complexity Medium
Cvss Expoit Score 8.6 Authentication None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Cisco Firewall Services Module (FWSM) 3.1(6), and 3.2(2) and earlier, does not properly enforce edited ACLs, which might allow remote attackers to bypass intended restrictions on network traffic, aka CSCsj52536.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5571

CWE : Common Weakness Enumeration

% Id Name
100 % CWE-264 Permissions, Privileges, and Access Controls

CPE : Common Platform Enumeration

TypeDescriptionCount
Hardware 14

Open Source Vulnerability Database (OSVDB)

Id Description
37946 Cisco Firewall Services Module (FWSM) ACL Manipulation Unspecified Corruption

Cisco Firewall Services Module (FWSM) contains a design flaw that may allow corruption of access-lists (ACL). The issue could be triggered by manipulating access control list entries (ACE). It is possible that the ACL becomes corrupted and not evaluate certain ACE's in a proper way, so that denied traffic could be accepted and permitted traffic blocked by the firewall. This results in a loss of integrity.

Sources (Detail)

http://secunia.com/advisories/27236
http://www.cisco.com/en/US/products/products_security_advisory09186a00808dda6...
http://www.securityfocus.com/bid/26109
http://www.securitytracker.com/id?1018825
http://www.vupen.com/english/advisories/2007/3530
https://exchange.xforce.ibmcloud.com/vulnerabilities/37258
Source Url

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
8
9
10
Date Informations
2024-11-28 23:16:01
  • Multiple Updates
2024-11-28 12:13:48
  • Multiple Updates
2021-05-08 01:04:04
  • Multiple Updates
2021-05-04 12:06:43
  • Multiple Updates
2021-04-22 01:07:13
  • Multiple Updates
2020-05-24 01:03:56
  • Multiple Updates
2020-05-23 00:20:39
  • Multiple Updates
2019-08-01 17:19:22
  • Multiple Updates
2017-07-29 12:02:37
  • Multiple Updates
2016-04-26 16:43:58
  • Multiple Updates
2013-05-11 10:39:55
  • Multiple Updates