Vulnerability Description
Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 12.0 |
References
- http://secunia.com/advisories/26359Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080899647.sPatchVendor Advisory
- http://www.securitytracker.com/id?1018542
- http://www.vupen.com/english/advisories/2007/2819Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35906
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://secunia.com/advisories/26359Vendor Advisory
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080899647.sPatchVendor Advisory
- http://www.securitytracker.com/id?1018542
- http://www.vupen.com/english/advisories/2007/2819Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35906
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2007-4285?
CVE-2007-4285 is a vulnerability with a CVSS score of 9.0 (HIGH). Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet ...
How severe is CVE-2007-4285?
CVE-2007-4285 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4285?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios.