CVE-2007-4788 - Vulnerability Details - OpenCVE

Cisco Content Switching Modules (CSM) 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL (CSM-S) 2.1 before 2.1.2a, allow remote attackers to cause a denial of service (CPU consumption or reboot) via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Content Switching Module With Ssl Content Switching Modules

Configuration 1 [-]

OR	cpe:2.3:h:cisco:content_switching_module_with_ssl::::::::
	cpe:2.3:h:cisco:content_switching_modules::::::::

No data.

References

Link	Providers
http://osvdb.org/37500
http://secunia.com/advisories/26724
http://securitytracker.com/id?1018654
http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml
http://www.securityfocus.com/bid/25547
http://www.vupen.com/english/advisories/2007/3062
https://exchange.xforce.ibmcloud.com/vulnerabilities/36450

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-09-10T21:00:00

Updated: 2024-08-07T15:08:33.806Z

Reserved: 2007-09-10T00:00:00

Link: CVE-2007-4788

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-09-10T21:17:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-4788

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-09-05T00:00:00", "descriptions": [{"lang": "en", "value": "Cisco Content Switching Modules (CSM) 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL (CSM-S) 2.1 before 2.1.2a, allow remote attackers to cause a denial of service (CPU consumption or reboot) via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20070905 Denial of Service Vulnerabilities in Content Switching Module", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml"}, {"name": "cisco-content-switching-tcp-dos(36450)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36450"}, {"name": "1018654", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1018654"}, {"name": "25547", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/25547"}, {"name": "37500", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/37500"}, {"name": "26724", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/26724"}, {"name": "ADV-2007-3062", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3062"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-4788", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Content Switching Modules (CSM) 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL (CSM-S) 2.1 before 2.1.2a, allow remote attackers to cause a denial of service (CPU consumption or reboot) via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20070905 Denial of Service Vulnerabilities in Content Switching Module", "refsource": "CISCO", "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml"}, {"name": "cisco-content-switching-tcp-dos(36450)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36450"}, {"name": "1018654", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1018654"}, {"name": "25547", "refsource": "BID", "url": "http://www.securityfocus.com/bid/25547"}, {"name": "37500", "refsource": "OSVDB", "url": "http://osvdb.org/37500"}, {"name": "26724", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/26724"}, {"name": "ADV-2007-3062", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3062"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:08:33.806Z"}, "title": "CVE Program Container", "references": [{"name": "20070905 Denial of Service Vulnerabilities in Content Switching Module", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml"}, {"name": "cisco-content-switching-tcp-dos(36450)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36450"}, {"name": "1018654", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1018654"}, {"name": "25547", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/25547"}, {"name": "37500", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/37500"}, {"name": "26724", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/26724"}, {"name": "ADV-2007-3062", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3062"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-4788", "datePublished": "2007-09-10T21:00:00", "dateReserved": "2007-09-10T00:00:00", "dateUpdated": "2024-08-07T15:08:33.806Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:content_switching_module_with_ssl:*:*:*:*:*:*:*:*", "matchCriteriaId": "5D5F1A61-3217-439E-9CBC-75951B6259C5", "versionEndIncluding": "2.1", "vulnerable": true}, {"criteria": "cpe:2.3:h:cisco:content_switching_modules:*:*:*:*:*:*:*:*", "matchCriteriaId": "42BF159D-0B68-4A19-A415-D3663E1DD0BE", "versionEndIncluding": "4.2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cisco Content Switching Modules (CSM) 4.2 before 4.2.3a, and Cisco Content Switching Module with SSL (CSM-S) 2.1 before 2.1.2a, allow remote attackers to cause a denial of service (CPU consumption or reboot) via sets of out-of-order TCP packets with unspecified characteristics, aka CSCsd27478."}, {"lang": "es", "value": "Cisco Content Switching Modules (CSM) 4.2 anterior a 4.2.3a, y Cisco Content Switching Module con SSL(CSM-S) 2.1 anterior a 2.1.2a, permite a atacantes remotos provocar denegaci\u00f3n de servicio (consumo de CPU o reinicio) a trav\u00e9s de asignaciones de paquetes TCP fuera de orden con caracter\u00edsticas no especificadas, tambi\u00e9n conocida como CSCsd27478."}], "id": "CVE-2007-4788", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-09-10T21:17:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/37500"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26724"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://securitytracker.com/id?1018654"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/25547"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/3062"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36450"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/37500"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://secunia.com/advisories/26724"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://securitytracker.com/id?1018654"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.cisco.com/warp/public/707/cisco-sa-20070905-csm.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch"], "url": "http://www.securityfocus.com/bid/25547"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2007/3062"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/36450"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-noinfo"}], "source": "nvd@nist.gov", "type": "Primary"}]}