7.8

CVE-2007-3923

EPSS 1.26%
Published 21.07.2007 00:30:00
Last modified 09.04.2025 00:30:58
Source cve@mitre.org
Teams watchlist Login
Open Login

The Common Internet File System (CIFS) optimization in Cisco Wide Area Application Services (WAAS) 4.0.7 and 4.0.9, as used by Cisco WAE appliance and the NM-WAE-502 network module, when Edge Services are configured, allows remote attackers to cause a denial of service (loss of service) via a flood of TCP SYN packets to port (1) 139 or (2) 445.

Affected products Warnungen 0 Metrics 2 CWE 0 References 10

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Wide Area Application Services Version4.0.7

Cisco ≫ Wide Area Application Engine
Cisco ≫ Wide Area Application Engine Nm-wae-502

Cisco ≫ Wide Area Application Services Version4.0.9

Cisco ≫ Wide Area Application Engine
Cisco ≫ Wide Area Application Engine Nm-wae-502

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.26%	0.775

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

http://secunia.com/advisories/26122

Patch

Vendor Advisory

http://www.cisco.com/warp/public/707/cisco-sa-20070718-waas.shtml

Patch

http://www.osvdb.org/36120

http://www.securityfocus.com/bid/24956

Patch

http://www.securitytracker.com/id?1018416

Patch

http://www.vupen.com/english/advisories/2007/2572

https://exchange.xforce.ibmcloud.com/vulnerabilities/35477

https://nvd.nist.gov/vuln/detail/CVE-2007-3923

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-3923

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-3923

EUVD