CVE-2006-4775Cross-site Scripting in Cisco IOS

CWE-399CWE-79Cross-site Scripting10 documents7 sources
Severity
7.8HIGHNVD
NVD6.1CNA6.1
EPSS
6.3%
top 8.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedSep 14
Latest updateMay 1

Description

The VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) and CatOS allows remote attackers to cause a denial of service by sending a VTP update with a revision value of 0x7FFFFFFF, which is incremented to 0x80000000 and is interpreted as a negative number in a signed context.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDcisco/ios12.1\(19\), 12.1\(22\)ea3+1

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

4
GHSA
GHSA-w58x-5ghh-784p: The VLAN Trunking Protocol (VTP) feature in Cisco IOS 122022-05-01
GHSA
GHSA-x2rx-8768-8678: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122022-05-01
CVEList
CVE-2005-4826: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122007-01-31
CVEList
CVE-2006-4775: The VLAN Trunking Protocol (VTP) feature in Cisco IOS 122006-09-14

💥Exploits & PoCs

1
Exploit-DB
Xcode OpenBase 10.0.0 (OSX) - Unsafe System Call Privilege Escalation2006-11-08

📋Vendor Advisories

2
Red Hat
phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled2008-10-27
Cisco
Cisco IOS VTP Integer Wrap Denial of Service Vulnerability2006-09-13

💬Community

1
Bugzilla
CVE-2008-4775 phpMyAdmin: XSS issue in pmd_pdf.php via db parameter with register_globals enabled2008-10-29
CVE-2006-4775 — Cross-site Scripting in Cisco IOS | cvebase