{"api_version":"1","generated_at":"2026-06-23T20:36:00+00:00","cve":"CVE-2007-0962","urls":{"html":"https://cve.report/CVE-2007-0962","api":"https://cve.report/api/cve/CVE-2007-0962.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2007-0962","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2007-0962"},"summary":{"title":"CVE-2007-0962","description":"Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when \"inspect http\" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.","state":"PUBLISHED","assigner":"mitre","published_at":"2007-02-16 00:28:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["NVD-CWE-Other","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.8","severity":"","vector":"AV:N/AC:L/Au:N/C:N/I:N/A:C","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"}}],"references":[{"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml","name":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Cisco Security Advisory: Multiple Vulnerabilities in Cisco PIX and ASA AppliancesĀ  [Products & Services] - Cisco Systems","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securitytracker.com/id?1017652","name":"http://www.securitytracker.com/id?1017652","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityTracker.com Archives - Cisco PIX Firewall Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/22562","name":"http://www.securityfocus.com/bid/22562","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Cisco PIX/ASA Privilege Escalation Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://www.securityfocus.com/bid/22561","name":"http://www.securityfocus.com/bid/22561","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Cisco Multiple Products Multiple Remote Denial Of Service Vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://osvdb.org/33055","name":"http://osvdb.org/33055","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32486","name":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32486","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml","name":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Multiple Vulnerabilities in Firewall Services ModuleĀ  [Products & Services] - Cisco Systems","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1017651","name":"http://securitytracker.com/id?1017651","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch"],"title":"SecurityTracker.com Archives - Cisco ASA Lets Remote Users Deny Service and Remote Authenticated Users Gain Elevated Privileges","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/24160","name":"http://secunia.com/advisories/24160","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Cisco PIX and ASA Privilege Escalation and Denial of Service - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2007/0608","name":"http://www.vupen.com/english/advisories/2007/0608","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://secunia.com/advisories/24180","name":"http://secunia.com/advisories/24180","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Patch","Vendor Advisory"],"title":"Cisco Firewall Services Module SIP DoS and ACL Corruption - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2007-0962","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-0962","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"asa_5500","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"asa_5500","cpe6":"7.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"firewall_services_module","cpe6":"2.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"firewall_services_module","cpe6":"3.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"pix_firewall_software","cpe6":"7.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"962","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"o","cpe4":"cisco","cpe5":"pix_firewall_software","cpe6":"7.1","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T12:34:21.308Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"ADV-2007-0608","tags":["vdb-entry","x_refsource_VUPEN","x_transferred"],"url":"http://www.vupen.com/english/advisories/2007/0608"},{"name":"24180","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/24180"},{"name":"20070214 Multiple Vulnerabilities in Cisco PIX and ASA Appliances","tags":["vendor-advisory","x_refsource_CISCO","x_transferred"],"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml"},{"name":"1017651","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1017651"},{"name":"22561","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/22561"},{"name":"cisco-pix-asa-http-dos(32486)","tags":["vdb-entry","x_refsource_XF","x_transferred"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32486"},{"name":"33055","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/33055"},{"name":"22562","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/22562"},{"name":"24160","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/24160"},{"name":"20070214 Multiple Vulnerabilities in Firewall Services Module","tags":["vendor-advisory","x_refsource_CISCO","x_transferred"],"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"},{"name":"1017652","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://www.securitytracker.com/id?1017652"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2007-02-14T00:00:00.000Z","descriptions":[{"lang":"en","value":"Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when \"inspect http\" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2017-07-28T12:57:01.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"ADV-2007-0608","tags":["vdb-entry","x_refsource_VUPEN"],"url":"http://www.vupen.com/english/advisories/2007/0608"},{"name":"24180","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/24180"},{"name":"20070214 Multiple Vulnerabilities in Cisco PIX and ASA Appliances","tags":["vendor-advisory","x_refsource_CISCO"],"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml"},{"name":"1017651","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1017651"},{"name":"22561","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/22561"},{"name":"cisco-pix-asa-http-dos(32486)","tags":["vdb-entry","x_refsource_XF"],"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32486"},{"name":"33055","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/33055"},{"name":"22562","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/22562"},{"name":"24160","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/24160"},{"name":"20070214 Multiple Vulnerabilities in Firewall Services Module","tags":["vendor-advisory","x_refsource_CISCO"],"url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"},{"name":"1017652","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://www.securitytracker.com/id?1017652"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2007-0962","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when \"inspect http\" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"ADV-2007-0608","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2007/0608"},{"name":"24180","refsource":"SECUNIA","url":"http://secunia.com/advisories/24180"},{"name":"20070214 Multiple Vulnerabilities in Cisco PIX and ASA Appliances","refsource":"CISCO","url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2484.shtml"},{"name":"1017651","refsource":"SECTRACK","url":"http://securitytracker.com/id?1017651"},{"name":"22561","refsource":"BID","url":"http://www.securityfocus.com/bid/22561"},{"name":"cisco-pix-asa-http-dos(32486)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/32486"},{"name":"33055","refsource":"OSVDB","url":"http://osvdb.org/33055"},{"name":"22562","refsource":"BID","url":"http://www.securityfocus.com/bid/22562"},{"name":"24160","refsource":"SECUNIA","url":"http://secunia.com/advisories/24160"},{"name":"20070214 Multiple Vulnerabilities in Firewall Services Module","refsource":"CISCO","url":"http://www.cisco.com/en/US/products/products_security_advisory09186a00807e2481.shtml"},{"name":"1017652","refsource":"SECTRACK","url":"http://www.securitytracker.com/id?1017652"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2007-0962","datePublished":"2007-02-16T00:00:00.000Z","dateReserved":"2007-02-15T00:00:00.000Z","dateUpdated":"2024-08-07T12:34:21.308Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2007-02-16 00:28:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["NVD-CWE-Other","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:N/I:N/A:C","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:firewall_services_module:2.3:*:*:*:*:*:*:*","matchCriteriaId":"E9A8528D-DF6A-4493-A77E-CBF08359F2E4"},{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:firewall_services_module:3.1:*:*:*:*:*:*:*","matchCriteriaId":"F90E9070-781D-4D3D-98EB-5B6DB9D3C75E"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:asa_5500:7.0:*:*:*:*:*:*:*","matchCriteriaId":"891B8FA4-B602-42C5-A94F-8C60BBF7A7D1"},{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:asa_5500:7.1:*:*:*:*:*:*:*","matchCriteriaId":"856917BD-179B-4C43-8EA6-034254720B63"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:pix_firewall_software:7.0:*:*:*:*:*:*:*","matchCriteriaId":"B009CCE4-908C-4830-B0E0-7B4CB33280F9"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:pix_firewall_software:7.1:*:*:*:*:*:*:*","matchCriteriaId":"640CDC78-22D3-4E60-8D36-F088D8DB27DA"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2007","CveId":"962","Ordinal":"1","Title":"CVE-2007-0962","CVE":"CVE-2007-0962","Year":"2007"},"notes":[{"CveYear":"2007","CveId":"962","Ordinal":"1","NoteData":"Cisco PIX 500 and ASA 5500 Series Security Appliances 7.0 before 7.0(4.14) and 7.1 before 7.1(2.1), and the FWSM 2.x before 2.3(4.12) and 3.x before 3.1(3.24), when \"inspect http\" is enabled, allows remote attackers to cause a denial of service (device reboot) via malformed HTTP traffic.","Type":"Description","Title":"CVE-2007-0962"},{"CveYear":"2007","CveId":"962","Ordinal":"2","NoteData":"2007-02-15","Type":"Other","Title":"Published"},{"CveYear":"2007","CveId":"962","Ordinal":"3","NoteData":"2017-07-28","Type":"Other","Title":"Modified"}]}}}