CVE-2007-5568

CWE-20 — Improper Input Validation CWE-3996 documents5 sources

Severity

7.1HIGH

EPSS

3.4%

top 12.67%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firewall Services Module Cisco Adaptive Security Appliance Software

Timeline

PublishedOct 18

Latest updateMay 1

Description

Cisco PIX and ASA appliances with 7.0 through 8.0 software, and Cisco Firewall Services Module (FWSM) 3.1(5) and earlier, allow remote attackers to cause a denial of service (device reload) via a crafted MGCP packet, aka CSCsi90468 (appliance) and CSCsi00694 (FWSM).

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages2 packages

▶NVDcisco/firewall_services_module3.1\(5\)

▶NVDcisco/adaptive_security_appliance_software24 versions+23

🔴Vulnerability Details

GHSA

GHSA-729f-q8j5-g2ph: Cisco PIX and ASA appliances with 7↗2022-05-01

▶

CVEList

CVE-2007-5568: Cisco PIX and ASA appliances with 7↗2007-10-18

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Firewall Services Module↗2007-10-17

▶

Cisco

Multiple Vulnerabilities in Cisco PIX and ASA Appliance↗2007-10-17

▶

💬Community

Bugzilla

CVE-2012-5568 tomcat: Slowloris denial of service↗2012-11-26

▶