CVE-2007-1257 — Vulnetix

CVE-2007-1257 PUBLISHED CVSS 10 CRITICAL

The Network Analysis Module (NAM) in Cisco Catalyst Series 6000, 6500, and 7600 allows remote attackers to execute arbitrary commands via certain SNMP packets that are spoofed from the NAM's own IP address.

EPSS 3.05% · 87.0th percentile

Risk Scores

CVSS 2.0

EPSS Score

3.05%

87.0th percentile

Affected Products

Vendor	Product	Versions
cisco	catalyst_6500_ws-x6380-nam	3.1\(1a\)
cisco	catalyst_6000_ws-svc-nam-1	*
cisco	catalyst_6500_ws-svc-nam-1	2.2\(1a\)
cisco	catalyst_6000_ws-svc-nam-2	2.2\(1a\)
n/a	n/a	n/a
cisco	catalyst_7600_ws-x6380-nam	3.1\(1a\)
cisco	catalyst_7600_ws-svc-nam-1	*
cisco	catalyst_7600_ws-svc-nam-2	2.2\(1a\)
cisco	catalyst_6000_ws-x6380-nam	3.1\(1a\)
cisco	catalyst_6500_ws-svc-nam-2	2.2\(1a\)
cisco	network_analysis_module

Exploit Intelligence

20070228 Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability (circl)
VU#472412 (circl)
ADV-2007-0783 (circl)
24344 (circl)
22751 (circl)
33066 (circl)
oval:org.mitre.oval:def:5188 (circl)
cisco-catalyst-nam-unauthorized-access(32750) (circl)
1017710 (circl)

Timeline

Feb 28, 2007 CVE Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Mar 7, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 17, 2023 EPSS Score
Sep 8, 2023 EPSS Score

References

http://www.securityfocus.com/bid/22751 url
http://www.securitytracker.com/id?1017710 url
20070228 Cisco Catalyst 6000, 6500 Series and Cisco 7600 Series NAM (Network Analysis Module) Vulnerability vendor-advisory
VU#472412 third-party-advisory
ADV-2007-0783 vdb
24344 third-party-advisory
33066 vdb
oval:org.mitre.oval:def:5188 vdb
cisco-catalyst-nam-unauthorized-access(32750) vdb
https://nvd.nist.gov/vuln/detail/CVE-2007-1257 advisory

Open in Interactive Console →