CVE-2007-0917
published 2007-02-14CVE-2007-0917: The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via…
medium6.4CVSS 3.1
AVNACLAuNCPIPAN
The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via fragmented packets.
Affected
25 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
| cisco | ios | — | — |
Cisco
Multiple IOS IPS Vulnerabilities
vendor_cisco·2007-02-13·CVSS 4.7
CVE-2007-0917 [MEDIUM] CWE-399 Multiple IOS IPS Vulnerabilities
Multiple IOS IPS Vulnerabilities
The Intrusion Prevention System (IPS) feature set of Cisco IOS®
contains several vulnerabilities. These include:
Fragmented IP packets may be used to evade signature
inspection.
IPS signatures utilizing the regular expression feature of the
ATOMIC.TCP signature engine may cause a router to crash resulting in a denial
of service.
There are mitigations and workarounds for these vulnerabilities. Cisco
has made free software available to address these vulnerabilities for affected
customers.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070213-iosips.
Cisco
Multiple IOS IPS Vulnerabilities
vendor_cisco
CVE-2007-0917 Multiple IOS IPS Vulnerabilities
CVE-2007-0917: Multiple IOS IPS Vulnerabilities
The Intrusion Prevention System (IPS) feature set of Cisco IOS� contains several vulnerabilities. These include: Fragmented IP packets may be used to evade signature inspection. IPS signatures utilizing the regular expression feature of the ATOMIC.TCP signature engine may cause a router to crash resulting in a denial of service. There are mitigations and
CWE: CWE-399, CWE-399
Bug IDs: CSCsa53334, CSCsg15598, CSCsg15598, CSCsa53334, CSCsg15598
GHSA
GHSA-hg22-3fv6-cgm7: The Intrusion Prevention System (IPS) feature for Cisco IOS 12
ghsa_unreviewed·2022-05-01
CVE-2007-0917 [MEDIUM] GHSA-hg22-3fv6-cgm7: The Intrusion Prevention System (IPS) feature for Cisco IOS 12
The Intrusion Prevention System (IPS) feature for Cisco IOS 12.4XE to 12.3T allows remote attackers to bypass IPS signatures that use regular expressions via fragmented packets.
No detection rules found.
No public exploits indexed.
Bugzilla
CVE-2007-3998 php floating point exception inside wordwrap
bugzilla·2007-09-04·CVSS 5.0
CVE-2007-3998 [MEDIUM] CVE-2007-3998 php floating point exception inside wordwrap
CVE-2007-3998 php floating point exception inside wordwrap
Description of problem:
http://www.secweb.se/en/advisories/php-wordwrap-vulnerability/
http://www.php.net/releases/5_2_4.php
Due to an incorrect use of breakcharlen it is possible to force wordwrap to
devide by zero or to enter an infinite loop.
Discussion:
This issue has been addressed in following products:
Red Hat Application Stack v2
Via RHSA-2007:0917 available at https://rhn.redhat.com/errata/RHSA-2007-0917.html
Bugzilla
CVE-2007-4659 php zend_alter_ini_entry() memory_limit interruption
bugzilla·2007-09-04·CVSS 7.5
CVE-2007-4659 [HIGH] CVE-2007-4659 php zend_alter_ini_entry() memory_limit interruption
CVE-2007-4659 php zend_alter_ini_entry() memory_limit interruption
Description of problem:
http://www.php.net/releases/5_2_4.php
Fixed zend_alter_ini_entry() memory_limit interruption vulnerability. (Reported
by Stefan Esser)
Discussion:
http://cvs.php.net/viewvc.cgi/ZendEngine2/zend_ini.c?r1=1.39.2.2.2.9&r2=1.39.2.2.2.10&diff_format=u
This issue does not affect PHP 4, or PHP 5.1.
---
This issue has been addressed in following products:
Red Hat Application Stack v2
Via RHSA-2007:0917 available at https://rhn.redhat.com/errata/RHSA-2007-0917.html
Bugzilla
CVE-2007-3799 php cross-site cookie insertion
bugzilla·2007-08-03·CVSS 4.3
CVE-2007-3799 [MEDIUM] CVE-2007-3799 php cross-site cookie insertion
CVE-2007-3799 php cross-site cookie insertion
http://www.php-security.org/MOPB/PMOPB-46-2007.html
"The session_start function in ext/session in PHP 4.x up to 4.4.7 and 5.x up to
5.2.3 allows remote attackers to insert arbitrary attributes into the session
cookie via special characters in a cookie that is obtained from (1) PATH_INFO,
(2) the session_id function, and (3) the session_start function, which are not
encoded or filtered when the new session cookie is generated."
Better expressed as: "The session_start function allows a cross-site cookie
insertion attack if a user follows an untrusted carefully-crafted URL"
"Affected are PHP4 <= 4.4.7 and PHP5 <= 5.2.3"
Discussion:
This issue was addressed in:
Red Hat Application Stack:
http://rhn.redhat.com/errata/RHSA-2007-0917.html
http:
http://osvdb.org/33052http://secunia.com/advisories/24142http://www.cisco.com/en/US/products/products_security_advisory09186a00807e0a5b.shtmlhttp://www.cisco.com/en/US/products/products_security_response09186a00807e0a5e.htmlhttp://www.securityfocus.com/bid/22549http://www.securitytracker.com/id?1017631http://www.vupen.com/english/advisories/2007/0597https://exchange.xforce.ibmcloud.com/vulnerabilities/32473https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5858http://osvdb.org/33052http://secunia.com/advisories/24142http://www.cisco.com/en/US/products/products_security_advisory09186a00807e0a5b.shtmlhttp://www.cisco.com/en/US/products/products_security_response09186a00807e0a5e.htmlhttp://www.securityfocus.com/bid/22549http://www.securitytracker.com/id?1017631http://www.vupen.com/english/advisories/2007/0597https://exchange.xforce.ibmcloud.com/vulnerabilities/32473https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5858
2007-02-14
Published