Vulnerability Description
Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of service (connection slot exhaustion and device crash) via a series of large packets designed to exploit the SSH CRC32 attack detection overflow (CVE-2001-0144), possibly a related issue to CVE-2002-1024.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Content Services Switch 11000 | All versions |
| Cisco | Webns | 8.20.0.1 |
| Openbsd | Openssh | 3.0.2p1 |
| Teamf1 | Sshield | 1.6.1 |
Related Weaknesses (CWE)
References
- http://osvdb.org/45873
- http://securityreason.com/securityalert/3091
- http://www.securityfocus.com/archive/1/478165/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44542
- http://osvdb.org/45873
- http://securityreason.com/securityalert/3091
- http://www.securityfocus.com/archive/1/478165/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44542
FAQ
What is CVE-2007-4654?
CVE-2007-4654 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of service...
How severe is CVE-2007-4654?
CVE-2007-4654 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4654?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Content Services Switch 11000, Cisco Webns, Openbsd Openssh, Teamf1 Sshield.