CVE-2007-2586
9.3
CVSS Score
Critical
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Link copied!
Description
The FTP Server in Cisco IOS 11.3 through 12.4 does not properly check user authorization, which allows remote attackers to execute arbitrary code, and have other impact including reading startup-config, as demonstrated by a crafted MKD command that involves access to a VTY device and overflows a buffer, aka bug ID CSCek55259.
CVSS Vector Details
Attack Vector
Network
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Affected Software Configurations
- o cisco ios 12.0\(1\)t * * * * * * *
- o cisco ios 12.0\(1\)t1 * * * * * * *
- o cisco ios 12.0\(1\)xe * * * * * * *
- o cisco ios 12.0\(2\)s * * * * * * *
- o cisco ios 12.0\(2\)t * * * * * * *
- o cisco ios 12.0\(2\)t1 * * * * * * *
- o cisco ios 12.0\(2\)xe * * * * * * *
- o cisco ios 12.0\(2\)xe1 * * * * * * *
- o cisco ios 12.0\(2\)xe3 * * * * * * *
- o cisco ios 12.0\(2\)xe4 * * * * * * *
Weaknesses (CWE)
- CWE-863
References & External Links
- http://seclists.org/bugtraq/2009/Jan/0183.html
- http://secunia.com/advisories/25199
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtml
- http://www.exploit-db.com/exploits/6155
- http://www.osvdb.org/35334
- http://www.securityfocus.com/archive/1/494868
- http://www.securityfocus.com/bid/23885
- http://www.securitytracker.com/id?1018030
- http://www.vupen.com/english/advisories/2007/1749
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34197
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5036
- http://seclists.org/bugtraq/2009/Jan/0183.html
- http://secunia.com/advisories/25199
- http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtml
- http://www.exploit-db.com/exploits/6155
- http://www.osvdb.org/35334
- http://www.securityfocus.com/archive/1/494868
- http://www.securityfocus.com/bid/23885
- http://www.securitytracker.com/id?1018030
- http://www.vupen.com/english/advisories/2007/1749
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34197
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5036