CVE-2007-2587
published 2007-05-10CVE-2007-2587: The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote authenticated users to cause a denial of service (IOS reload) via unspecified vectors involving…
medium6.3CVSS 3.1
AVNACMAuSCNINAC
The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote authenticated users to cause a denial of service (IOS reload) via unspecified vectors involving transferring files (aka bug ID CSCse29244).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ios | 11.3 – 12.4 | — |
Cisco
Multiple Vulnerabilities in the IOS FTP Server
vendor_cisco·2007-05-09·CVSS 10.0
CVE-2007-2586 [CRITICAL] CWE-399 Multiple Vulnerabilities in the IOS FTP Server
Multiple Vulnerabilities in the IOS FTP Server
The Cisco IOS FTP Server feature contains multiple vulnerabilities that
can result in a denial of service (DoS) condition, improper verification of
user credentials, and the ability to retrieve or write any file from the device
filesystem, including the device's saved configuration. This configuration file
may include passwords or other sensitive information.
The IOS FTP Server is an optional service that is disabled by default.
Devices that are not specifically configured to enable the IOS FTP Server
service are unaffected by these vulnerabilities.
This vulnerability does not apply to the IOS FTP Client feature.
This advisory is posted at
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20070509-iosft
Cisco
Multiple Vulnerabilities in the IOS FTP Server
vendor_cisco
CVE-2007-2587 Multiple Vulnerabilities in the IOS FTP Server
CVE-2007-2587: Multiple Vulnerabilities in the IOS FTP Server
The Cisco IOS FTP Server feature contains multiple vulnerabilities that can result in a denial of service (DoS) condition, improper verification of user credentials, and the ability to retrieve or write any file from the device filesystem, including the device's saved configuration. This configuration file may include passwords or other sensitive information. The IOS FTP Server is an optional service that is disabled by default. Devices that are not specifically configured to enable the IOS FTP Server service are unaffected by these vulnerabilities. This vulnerability does not apply to the IOS FTP Client feature. This advisory is posted at https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-200
GHSA
GHSA-x7qh-xv7g-wv62: The IOS FTP Server in Cisco IOS 11
ghsa_unreviewed·2022-05-01
CVE-2007-2587 [MEDIUM] GHSA-x7qh-xv7g-wv62: The IOS FTP Server in Cisco IOS 11
The IOS FTP Server in Cisco IOS 11.3 through 12.4 allows remote authenticated users to cause a denial of service (IOS reload) via unspecified vectors involving transferring files (aka bug ID CSCse29244).
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/25199http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtmlhttp://www.osvdb.org/35335http://www.securityfocus.com/bid/23885http://www.securitytracker.com/id?1018030http://www.vupen.com/english/advisories/2007/1749https://exchange.xforce.ibmcloud.com/vulnerabilities/34196https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5444http://secunia.com/advisories/25199http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtmlhttp://www.osvdb.org/35335http://www.securityfocus.com/bid/23885http://www.securitytracker.com/id?1018030http://www.vupen.com/english/advisories/2007/1749https://exchange.xforce.ibmcloud.com/vulnerabilities/34196https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5444
2007-05-10
Published