CVE-2007-2813

Currently unrated

Key Information:

Vendor: Cisco
Status: Ios Transmission Control Protocol
Vendor: CVE Published:; 22 May 2007

Summary

Cisco IOS 12.4 and earlier, when using the crypto packages and SSL support is enabled, allows remote attackers to cause a denial of service via a malformed (1) ClientHello, (2) ChangeCipherSpec, or (3) Finished message during an SSL session.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/34442

vdb-entryx_refsource_XF

http://www.securitytracker.com/id?1018094

vdb-entryx_refsource_SECTRACK

https://exchange.xforce.ibmcloud.com/vulnerabilities/34436

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 22, 2007
Vulnerability Reserved
May 22, 2007