VDB
CVE-2007-4292
CVE-2007-4292
PUBLISHED
CVSS 9.300000190734863 CRITICAL
Multiple memory leaks in Cisco IOS 12.0 through 12.4 allow remote attackers to cause a denial of service (device crash) via a malformed SIP packet, aka (1) CSCsf11855, (2) CSCeb21064, (3) CSCse40276, (4) CSCse68355, (5) CSCsf30058, (6) CSCsb24007, and (7) CSCsc60249.
EPSS 8.22% · 92.4th percentile
Risk Scores
CVSS 2.0
9.300000190734863
EPSS Score
8.22%
92.4th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| cisco | ios | 12.0, 12.1, 12.2 |
Exploit Intelligence
- 36675 (circl)
- ADV-2007-2816 (circl)
- 36674 (circl)
- 36671 (circl)
- 36670 (circl)
- 1018533 (circl)
- 36676 (circl)
- 25239 (circl)
- 26363 (circl)
- cisco-ios-sip-dos(35890) (circl)
…and 8 more exploits
Timeline
- Aug 8, 2007 CVE Published
- Aug 8, 2007 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
References
- 36675 vdb
- ADV-2007-2816 vdb
- 36674 vdb
- 36671 vdb
- 36670 vdb
- 1018533 vdb
- 36676 vdb
- 25239 vdb
- 26363 third-party-advisory
- cisco-ios-sip-dos(35890) vdb
- oval:org.mitre.oval:def:5781 vdb
- 20070808 Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager vendor-advisory
- 36672 vdb
- 36673 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2007-4292 advisory