Vulnerability Details CVE-2007-4285
Unspecified vulnerability in Cisco IOS and Cisco IOS XR 12.x up to 12.3, including some versions before 12.3(15) and 12.3(14)T, allows remote attackers to obtain sensitive information (partial packet contents) or cause a denial of service (router or component crash) via crafted IPv6 packets with a Type 0 routing header.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.011
EPSS Ranking 77.4%
CVSS Severity
CVSS v2 Score 9.0
References
- http://secunia.com/advisories/26359
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080899647.shtml
- http://www.securitytracker.com/id?1018542
- http://www.vupen.com/english/advisories/2007/2819
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35906
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5840
- http://secunia.com/advisories/26359
- http://www.cisco.com/en/US/products/products_security_advisory09186a0080899647.shtml
- http://www.securitytracker.com/id?1018542
- http://www.vupen.com/english/advisories/2007/2819
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35906
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5840