CVE-2007-5651

high

Description

Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet.

References

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5288

https://exchange.xforce.ibmcloud.com/vulnerabilities/37300

http://www.vupen.com/english/advisories/2007/3566

http://www.securitytracker.com/id?1018842

http://www.securityfocus.com/bid/26139

http://www.cisco.com/en/US/products/products_security_response09186a00808de8bb.html

http://secunia.com/advisories/27329

Details

Source: Mitre, NVD

Published: 2007-10-23

Updated: 2017-09-29

Risk Information

CVSS v2

Base Score: 7.1

Vector: CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Severity: High