Denial of Service Vulnerability in Cisco Wireless and Wired EAP Devices
CVE-2007-5651

Currently unrated

Key Information:

Vendor: Cisco
Status: Catos; Ios
Vendor: CVE Published:; 23 October 2007

Summary

This vulnerability exists within the Extensible Authentication Protocol (EAP) implementation on Cisco IOS 12.1 up to 12.4, as well as on CatOS 6.x to 8.x. Malicious actors can exploit this flaw by sending specially crafted EAP Response Identity packets to the devices, leading to an unexpected reload, thereby causing a denial-of-service condition. This issue affects a range of products, including Cisco Access Points and switches, highlighting significant security risks for network operations.

References

http://secunia.com/advisories/27329

third-party-advisoryx_refsource_SECUNIA

http://www.securitytracker.com/id?1018842

vdb-entryx_refsource_SECTRACK

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

Timeline

Vulnerability published
Oct 23, 2007
Vulnerability Reserved
Oct 23, 2007