Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5134

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-5134
Last Modified 07 Mar 2011 10:00:08
Published 27 Sep 2007 03:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5134

Summary

Cisco Catalyst 6500 and Cisco 7600 series devices use 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication, which might allow remote attackers to send packets to an interface for which network exposure was unintended.

Vulnerable Systems

Operating System

  • Cisco Catos 5.4%281%29

  • Cisco Catos 7.5%281%29

  • Cisco Catos 7.6%281%29


References

CISCO - 20070926 Catalyst 6500 and Cisco 7600 Series Devices Accessible via Loopback Address

VUPEN - ADV-2007-3276

BID - 25822

SECTRACK - 1018742

FULLDISC - 20070927 Re: CAT6500 accessible via 127.0.0.x loopback addresses

XF - cisco-catalyst-loopback-acl-bypass(36826)

SECTRACK - 1018743

SECUNIA - 26988


Last Updated: 27 May 2016 10:46:05