CVE-2006-4776Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco IOS

CWE-119Improper Restriction of Operations within the Bounds of a Memory Buffer7 documents4 sources
Severity
7.5HIGHNVD
NVD6.1CNA6.1
EPSS
17.3%
top 4.95%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco IOS
Timeline
PublishedSep 14
Latest updateMay 1

Description

Heap-based buffer overflow in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 12.1(19) allows remote attackers to execute arbitrary code via a long VLAN name in a VTP type 2 summary advertisement.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDcisco/ios12.1\(19\), 12.1\(22\)ea3+1

Patches

Patch: www.cisco.comPatch: www.cisco.com

🔴Vulnerability Details

4
GHSA
GHSA-x2rx-8768-8678: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122022-05-01
GHSA
GHSA-w4j4-63w3-w6m9: Heap-based buffer overflow in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122022-05-01
CVEList
CVE-2005-4826: Unspecified vulnerability in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122007-01-31
CVEList
CVE-2006-4776: Heap-based buffer overflow in the VLAN Trunking Protocol (VTP) feature in Cisco IOS 122006-09-14

📋Vendor Advisories

1
Cisco
Cisco IOS VTP VLAN Buffer Overflow Vulnerability2006-09-13
CVE-2006-4776 — Cisco IOS vulnerability | cvebase