CVE-2007-3537

3 documents3 sources
Severity
7.8HIGH
EPSS
0.7%
top 27.29%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM OS 400
Timeline
PublishedJul 3
Latest updateMay 1

Description

IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules.

CVSS vector

AV:N/AC:L/C:C/I:N/A:NExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

NVDibm/os_4008 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-qv35-fg75-f39j: IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain syste2022-05-01
CVEList
CVE-2007-3537: IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain syste2007-07-03
CVE-2007-3537 (HIGH CVSS 7.8) | IBM OS/400 (aka i5/OS) V4R2M0 throu | cvebase.io