CVE-2007-5651
Summary
| CVE | CVE-2007-5651 |
|---|---|
| State | PUBLISHED |
| Assigner | mitre |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-10-23 21:47:00 UTC |
| Updated | 2026-04-23 00:35:47 UTC |
| Description | Unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation in Cisco IOS 12.3 and 12.4 on Cisco Access Points and 1310 Wireless Bridges (Wireless EAP devices), IOS 12.1 and 12.2 on Cisco switches (Wired EAP devices), and CatOS 6.x through 8.x on Cisco switches allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet. |
Risk And Classification
Primary CVSS: v2.0 7.1 from [email protected]
AV:N/AC:M/Au:N/C:N/I:N/A:C
Problem Types: NVD-CWE-noinfo | n/a
CVSS v2.0 Breakdown
Access Vector
NetworkAccess Complexity
MediumAuthentication
NoneConfidentiality
NoneIntegrity
NoneAvailability
CompleteAV:N/AC:M/Au:N/C:N/I:N/A:C
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Operating System | Cisco | Catos | 6.1 | All | All | All |
| Operating System | Cisco | Catos | 6.2 | All | All | All |
| Operating System | Cisco | Catos | 6.3 | All | All | All |
| Operating System | Cisco | Catos | 6.4 | All | All | All |
| Operating System | Cisco | Catos | 7.1 | All | All | All |
| Operating System | Cisco | Catos | 7.2 | All | All | All |
| Operating System | Cisco | Catos | 7.3 | All | All | All |
| Operating System | Cisco | Catos | 7.4 | All | All | All |
| Operating System | Cisco | Catos | 7.5 | All | All | All |
| Operating System | Cisco | Catos | 7.6 | All | All | All |
| Operating System | Cisco | Catos | 8.1 | All | All | All |
| Operating System | Cisco | Catos | 8.2 | All | All | All |
| Operating System | Cisco | Catos | 8.3 | All | All | All |
| Operating System | Cisco | Catos | 8.4 | All | All | All |
| Operating System | Cisco | Catos | 8.5 | All | All | All |
| Operating System | Cisco | Ios | 12.1 | All | All | All |
| Operating System | Cisco | Ios | 12.2 | All | All | All |
| Operating System | Cisco | Ios | 12.3ja | All | All | All |
| Operating System | Cisco | Ios | 12.3jea | All | All | All |
| Operating System | Cisco | Ios | 12.3jeb | All | All | All |
| Operating System | Cisco | Ios | 12.3jec | All | All | All |
| Operating System | Cisco | Ios | 12.4ja | All | All | All |
Vendor Declared Affected Products
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| SecurityTracker.com Archives - Cisco IOS Extensible Authentication Protocol (EAP) Bug Lets Remote Users Deny Service | af854a3a-2127-422b-91ae-364da2661108 | www.securitytracker.com | |
| Cisco Products EAP Denial of Service Vulnerability - Advisories - Secunia | af854a3a-2127-422b-91ae-364da2661108 | secunia.com | |
| Cisco Multiple Products Extensible Authentication Protocol Denial of Service Vulnerability | af854a3a-2127-422b-91ae-364da2661108 | www.securityfocus.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | af854a3a-2127-422b-91ae-364da2661108 | www.vupen.com | |
| Repository / Oval Repository | af854a3a-2127-422b-91ae-364da2661108 | oval.cisecurity.org | |
| Cisco Security Response: Extensible Authentication Protocol Vulnerability [Products & Services] - Cisco Systems | af854a3a-2127-422b-91ae-364da2661108 | www.cisco.com | |
| IBM X-Force Exchange | af854a3a-2127-422b-91ae-364da2661108 | exchange.xforce.ibmcloud.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.