CVE Vulnerabilities

CVE-2007-0918

Published: Feb 14, 2007 | Modified: Jun 02, 2022
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.1 HIGH
AV:N/AC:M/Au:N/C:N/I:N/A:C
RedHat/V2
RedHat/V3
Ubuntu

The ATOMIC.TCP signature engine in the Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XA, 12.3YA, 12.3T, and other trains allows remote attackers to cause a denial of service (IPS crash and traffic loss) via unspecified manipulations that are not properly handled by the regular expression feature, as demonstrated using the 3123.0 (Netbus Pro Traffic) signature.

Affected Software

Name Vendor Start Version End Version
Ios Cisco 12.3t 12.3t
Ios Cisco 12.3xq 12.3xq
Ios Cisco 12.3xr 12.3xr
Ios Cisco 12.3xs 12.3xs
Ios Cisco 12.3xw 12.3xw
Ios Cisco 12.3xx 12.3xx
Ios Cisco 12.3xy 12.3xy
Ios Cisco 12.3ya 12.3ya
Ios Cisco 12.3yd 12.3yd
Ios Cisco 12.3yg 12.3yg
Ios Cisco 12.3yh 12.3yh
Ios Cisco 12.3yi 12.3yi
Ios Cisco 12.3yj 12.3yj
Ios Cisco 12.3yk 12.3yk
Ios Cisco 12.3ym 12.3ym
Ios Cisco 12.3yq 12.3yq
Ios Cisco 12.3ys 12.3ys
Ios Cisco 12.3yt 12.3yt
Ios Cisco 12.3yx 12.3yx
Ios Cisco 12.3yz 12.3yz
Ios Cisco 12.4 12.4
Ios Cisco 12.4mr 12.4mr
Ios Cisco 12.4t 12.4t
Ios Cisco 12.4xa 12.4xa
Ios Cisco 12.4xb 12.4xb

References