Network Exposure Exploit in Cisco Catalyst 6500 and Cisco 7600 Devices
CVE-2007-5134

Currently unrated

Key Information:

Vendor: Cisco
Status: Catalyst 6500 Ws-svc-nam-2; Catalyst 7600 Ws-svc-nam-1; Catalyst 7600; Catalyst 7600 Ws-svc-nam-2
Vendor: CVE Published:; 27 September 2007

Summary

Cisco Catalyst 6500 and Cisco 7600 series devices have a vulnerability that allows remote attackers to exploit the use of 127/8 IP addresses for Ethernet Out-of-Band Channel (EOBC) internal communication. This misconfiguration may lead to unintended network exposure, enabling attackers to send packets to interfaces that were not intended for external access. This flaw poses a risk to the security and integrity of the affected networks.

References

http://www.securitytracker.com/id?1018743

vdb-entryx_refsource_SECTRACK

http://secunia.com/advisories/26988

third-party-advisoryx_refsource_SECUNIA

http://www.vupen.com/english/advisories/2007/3276

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Sep 27, 2007
Vulnerability Reserved
Sep 27, 2007