Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2586Incorrect Authorization in Cisco IOS

CWE-863Incorrect AuthorizationCWE-3995 documents5 sources
Severity
9.3CRITICALNVD
EPSS
60.7%
top 1.70%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Cisco IOS
Timeline
PublishedMay 10
Latest updateMay 1

Description

The FTP Server in Cisco IOS 11.3 through 12.4 does not properly check user authorization, which allows remote attackers to execute arbitrary code, and have other impact including reading startup-config, as demonstrated by a crafted MKD command that involves access to a VTY device and overflows a buffer, aka bug ID CSCek55259.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

NVDcisco/ios380 versions+379

🔴Vulnerability Details

2
GHSA
GHSA-m5c2-384p-37r2: The FTP Server in Cisco IOS 112022-05-01
CVEList
CVE-2007-2586: The FTP Server in Cisco IOS 112007-05-09

💥Exploits & PoCs

1
Exploit-DB
Cisco IOS 12.3(18) (FTP Server) - Remote (Attached to GDB)2008-07-29

📋Vendor Advisories

1
Cisco
Multiple Vulnerabilities in the IOS FTP Server2007-05-09
CVE-2007-2586 — Incorrect Authorization in Cisco IOS | cvebase