CVE-2007-4295 — Vulnetix

CVE-2007-4295 PUBLISHED CVSS 6.800000190734863 MEDIUM

Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows remote attackers to execute arbitrary code via a malformed SIP packet, aka CSCsi80749.

EPSS 3.35% · 87.6th percentile

Risk Scores

CVSS 2.0

6.800000190734863

EPSS Score

3.35%

87.6th percentile

Affected Products

Vendor	Product	Versions
cisco	ios	12.0, 12.1, 12.2
n/a	n/a	*

Exploit Intelligence

36667 (circl)
ADV-2007-2816 (circl)
oval:org.mitre.oval:def:5075 (circl)
1018533 (circl)
25239 (circl)
26363 (circl)
20070808 Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager (circl)
Cisco IOS and Unified Communications Manager Multiple Voice Vulnerabilities (variot)
Cisco IOS and Unified Communications Manager Multiple Voice Vulnerabilities (variot)
Cisco IOS and Unified Communications Manager Multiple Voice Vulnerabilities (variot)

…and 1 more exploits

Timeline

Aug 8, 2007 CVE Published
Aug 8, 2007 PoC Published
Feb 4, 2022 EPSS Score
Mar 29, 2022 EPSS Score
May 20, 2022 EPSS Score
Sep 4, 2022 EPSS Score
Oct 26, 2022 EPSS Score
Dec 18, 2022 EPSS Score
Feb 9, 2023 EPSS Score
Apr 3, 2023 EPSS Score
May 25, 2023 EPSS Score
Jul 10, 2023 EPSS Score

References

36667 vdb
ADV-2007-2816 vdb
oval:org.mitre.oval:def:5075 vdb
1018533 vdb
25239 vdb
26363 third-party-advisory
20070808 Voice Vulnerabilities in Cisco IOS and Cisco Unified Communications Manager vendor-advisory
https://nvd.nist.gov/vuln/detail/CVE-2007-4295 advisory

Open in Interactive Console →