Executive Summary
Summary | |
---|---|
Title | Crafted IP Option Vulnerability |
Informations | |||
---|---|---|---|
Name | cisco-sa-20070124-crafted-ip-option | First vendor Publication | 2007-01-22 |
Vendor | Cisco | Last vendor Modification | 2007-04-22 |
Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Cisco routers and switches running Cisco IOS? or Cisco IOS XR software may be vulnerable to a remotely exploitable crafted IP option Denial of Service (DoS) attack. Exploitation of the vulnerability may potentially allow for arbitrary code execution. The vulnerability may be exploited after processing an Internet Control Message Protocol (ICMP) packet, Protocol Independent Multicast version 2 (PIMv2) packet, Pragmatic General Multicast (PGM) packet, or URL Rendezvous Directory (URD) packet containing a specific crafted IP option in the packet's IP header. No other IP protocols are affected by this issue. |
Original Source
Url : http://www.cisco.com/warp/public/707/cisco-sa-20070124-crafted-ip-option.shtml |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:5666 | |||
Oval ID: | oval:org.mitre.oval:def:5666 | ||
Title: | Cisco IOS IP Option Remote Code Execution Vulnerability | ||
Description: | Cisco IOS 9.x, 10.x, 11.x, and 12.x and IOS XR 2.0.x, 3.0.x, and 3.2.x allows remote attackers to cause a denial of service or execute arbitrary code via a crafted IP option in the IP header in a (1) ICMP, (2) PIMv2, (3) PGM, or (4) URD packet. | ||
Family: | ios | Class: | vulnerability |
Reference(s): | CVE-2007-0480 | Version: | 1 |
Platform(s): | Cisco IOS | Product(s): | |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
32092 | Cisco IOS Crafted IP Options Remote Code Execution Cisco IOS contains a flaw that may allow a remote attacker to gain privileges. The issue occurs because the operating system does not properly handle incoming packets. By sending traffic with a crafted IP option in an IPheader of an ICMP, PIMv2, PGM or URD packet, an attacker can potentially cause a denial of service or execute arbitrary code. |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2013-12-14 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20070124-crafted-ip-option-iosxr.nasl - Type : ACT_GATHER_INFO |
2010-09-01 | Name : This plugin has been deprecated. File : cisco-sa-20070124-bundle.nasl - Type : ACT_GATHER_INFO |
2010-09-01 | Name : The remote device is missing a vendor-supplied security patch. File : cisco-sa-20070124-crafted-ip-optionhttp.nasl - Type : ACT_GATHER_INFO |
2007-03-01 | Name : Arbitrary code can be executed on the remote CISCO device. File : CSCeh52410.nasl - Type : ACT_GATHER_INFO |
Alert History
Date | Informations |
---|---|
2014-02-17 10:21:50 |
|