CVE-2007-2586

NONECVSS 0.0

0.0

The FTP Server in Cisco IOS 11.3 through 12.4 does not properly check user authorization, which allows remote attackers to execute arbitrary code, and have other impact including reading startup-config, as demonstrated by a crafted MKD command that involves access to a VTY device and overflows a buffer, aka bug ID CSCek55259.

🔗 References (22)

cve@mitrehttp://seclists.org/bugtraq/2009/Jan/0183.html
cve@mitrehttp://secunia.com/advisories/25199
cve@mitrehttp://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtml
cve@mitrehttp://www.exploit-db.com/exploits/6155
cve@mitrehttp://www.osvdb.org/35334
cve@mitrehttp://www.securityfocus.com/archive/1/494868
cve@mitrehttp://www.securityfocus.com/bid/23885
cve@mitrehttp://www.securitytracker.com/id?1018030
cve@mitrehttp://www.vupen.com/english/advisories/2007/1749
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/34197
cve@mitrehttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5036
af854a3a-2127-422b-91ae-364da2661108http://seclists.org/bugtraq/2009/Jan/0183.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/25199
af854a3a-2127-422b-91ae-364da2661108http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtml
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/6155

Is Your Infrastructure Affected by CVE-2007-2586?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-2586

📅 Published

🔄 Last Modified

🔗 References (22)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-2586?