CVE-2007-5651
First published: Tue Oct 23 2007(Updated: )
Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco CatOS | =6.2 | |
| Cisco CatOS | =7.4 | |
| Puppet Cisco IOS | =12.3jec | |
| Cisco CatOS | =6.3 | |
| Cisco CatOS | =7.6 | |
| Cisco CatOS | =6.4 | |
| Cisco CatOS | =7.3 | |
| Cisco CatOS | =8.1 | |
| Cisco CatOS | =7.1 | |
| Cisco CatOS | =7.5 | |
| Cisco CatOS | =8.2 | |
| Puppet Cisco IOS | =12.1 | |
| Cisco CatOS | =6.1 | |
| Puppet Cisco IOS | =12.3jea | |
| Puppet Cisco IOS | =12.3ja | |
| Cisco CatOS | =7.2 | |
| Cisco CatOS | =8.5 | |
| Puppet Cisco IOS | =12.3jeb | |
| Puppet Cisco IOS | =12.4ja | |
| Puppet Cisco IOS | =12.2 | |
| Cisco CatOS | =8.4 | |
| Cisco CatOS | =8.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.cisco.com/en/US/products/products_security_response09186a00808de8bb.html
- http://www.securityfocus.com/bid/26139
- http://www.securitytracker.com/id?1018842
- http://secunia.com/advisories/27329
- http://www.vupen.com/english/advisories/2007/3566
- https://exchange.xforce.ibmcloud.com/vulnerabilities/37300
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5288
Frequently Asked Questions
What is the severity of CVE-2007-5651?
CVE-2007-5651 is rated as high severity due to its potential to allow unauthorized access to network devices.
How do I fix CVE-2007-5651?
To fix CVE-2007-5651, upgrade affected Cisco IOS and CatOS versions to the latest patches or recommended versions provided by Cisco.
What are the affected versions in CVE-2007-5651?
CVE-2007-5651 affects various Cisco IOS versions including 12.1, 12.2, 12.3, and 12.4, as well as multiple versions of CatOS.
What type of devices are impacted by CVE-2007-5651?
CVE-2007-5651 impacts Cisco Access Points, Wireless Bridges, and Cisco switches utilizing EAP.
Is CVE-2007-5651 exploitable remotely?
Yes, CVE-2007-5651 is remotely exploitable, which increases the risk for organizations running affected devices.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/author
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/cisco
- canonical/cisco catos
- version/cisco catos/6.2
- version/cisco catos/7.4
- canonical/cisco ios
- version/cisco ios/12.3jec
- version/cisco catos/6.3
- version/cisco catos/7.6
- version/cisco catos/6.4
- version/cisco catos/7.3
- version/cisco catos/8.1
- version/cisco catos/7.1
- version/cisco catos/7.5
- version/cisco catos/8.2
- version/cisco ios/12.1
- version/cisco catos/6.1
- version/cisco ios/12.3jea
- version/cisco ios/12.3ja
- version/cisco catos/7.2
- version/cisco catos/8.5
- version/cisco ios/12.3jeb
- version/cisco ios/12.4ja
- version/cisco ios/12.2
- version/cisco catos/8.4
- version/cisco catos/8.3