Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2007-2586

Published: 10/05/2007 Updated: 09/05/2023
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Ios

Vulnerability Summary

The FTP Server in Cisco IOS 11.3 up to and including 12.4 does not properly check user authorization, which allows remote malicious users to execute arbitrary code, and have other impact including reading startup-config, as demonstrated by a crafted MKD command that involves access to a VTY device and overflows a buffer, aka bug ID CSCek55259.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios 12.0\\(10\\)s6

cisco ios 12.1\\(5\\)xm1

cisco ios 12.4\\(2\\)t2

cisco ios 12.3\\(14\\)ym4

cisco ios 12.0\\(8\\)s1

cisco ios 12.2\\(14\\)sz1

cisco ios 12.4\\(2\\)xa1

cisco ios 12.3\\(2\\)xe4

cisco ios 12.3\\(14\\)t5

cisco ios 12.4\\(2\\)t4

cisco ios 12.3\\(4\\)t9

cisco ios 12.3\\(11\\)t9

cisco ios 12.0\\(3\\)t3

cisco ios 12.0\\(5\\)t1

cisco ios 12.4\\(6\\)t4

cisco ios 12.3\\(4\\)xd1

cisco ios 12.4\\(6\\)t

cisco ios 12.3\\(7\\)t1

cisco ios 12.3\\(14\\)ym8

cisco ios 12.3\\(7\\)xr2

cisco ios 12.3\\(7\\)xs2

cisco ios 12.2\\(13\\)zf

cisco ios 12.3\\(14\\)t7

cisco ios 12.4\\(11\\)sw

cisco ios 12.1\\(3\\)xi

cisco ios 12.3\\(11\\)t10

cisco ios 12.0\\(7\\)s

cisco ios 12.0\\(10\\)s3

cisco ios 12.0\\(9\\)st

cisco ios 12.3\\(11\\)yf2

cisco ios 12.0\\(2\\)t

cisco ios 12.3\\(11\\)t8

cisco ios 12.3\\(7\\)xr

cisco ios 12.0\\(11\\)st

cisco ios 12.4\\(9\\)t1

cisco ios 12.3\\(8\\)t6

cisco ios 12.2\\(12b\\)m1

cisco ios 12.3\\(2\\)xa1

cisco ios 12.1\\(9\\)ex

cisco ios 12.3\\(5a\\)b3

cisco ios 12.3\\(11\\)t4

cisco ios 12.3\\(8\\)xx

cisco ios 12.3\\(8\\)yg

cisco ios 12.3\\(14\\)t2

cisco ios 12.0\\(10\\)s5

cisco ios 12.2\\(20\\)s2

cisco ios 12.2\\(20\\)s1

cisco ios 12.3\\(2\\)ja4

cisco ios 12.3\\(7\\)t9

cisco ios 12.3\\(2\\)xa

cisco ios 12.0\\(5\\)xk2

cisco ios 12.0\\(5\\)xk1

cisco ios 12.2\\(11\\)yz

cisco ios 12.3\\(8\\)t5

cisco ios 12.3\\(7\\)t8

cisco ios 12.3\\(11\\)yz1

cisco ios 12.3\\(11\\)xl

cisco ios 12.2\\(13\\)zh1

cisco ios 12.1\\(6\\)ex

cisco ios 12.3\\(14\\)t3

cisco ios 12.2\\(25\\)s

cisco ios 12.0\\(11\\)s3

cisco ios 12.3\\(2\\)t1

cisco ios 12.0\\(11\\)st3

cisco ios 12.4\\(4\\)t

cisco ios 12.3\\(4\\)t2

cisco ios 12.3\\(11\\)t

cisco ios 12.3\\(4\\)t11

cisco ios 12.0\\(11\\)s

cisco ios 12.3\\(14\\)ym5

cisco ios 12.3\\(5a\\)b

cisco ios 12.2\\(9\\)yo4

cisco ios 12.0\\(9\\)s

cisco ios 12.3\\(8\\)yg1

cisco ios 12.3\\(2\\)t9

cisco ios 12.2\\(14\\)sz4

cisco ios 12.0\\(7\\)xk

cisco ios 12.3\\(11\\)t3

cisco ios 12.3\\(5a\\)b2

cisco ios 12.3\\(4\\)xk3

cisco ios 12.2\\(9\\)yo1

cisco ios 12.2\\(13\\)zh3

cisco ios 12.1\\(5\\)xm5

cisco ios 12.3\\(8\\)t11

cisco ios 12.0\\(3\\)t

cisco ios 12.0\\(5\\)xe2

cisco ios 12.3\\(4\\)xk1

cisco ios 12.3\\(4\\)t10

cisco ios 12.3\\(14\\)ym3

cisco ios 12.2\\(20\\)s6

cisco ios 12.0\\(9\\)s8

cisco ios 12.4\\(2\\)t1

cisco ios 12.0\\(1\\)t1

cisco ios 12.3\\(5a\\)b5

cisco ios 12.3\\(4\\)xd2

cisco ios 12.4\\(6\\)xe

cisco ios 12.3\\(2\\)xe1

cisco ios 12.3\\(14\\)t4

cisco ios 12.3\\(8\\)t9

cisco ios 12.0\\(10\\)st

cisco ios 12.4\\(4\\)xc

cisco ios 12.3\\(4\\)t3

cisco ios 12.2\\(25\\)s1

cisco ios 12.0\\(2\\)t1

cisco ios 12.0\\(10\\)s8

cisco ios 12.3\\(8\\)t3

cisco ios 12.3\\(8\\)t7

cisco ios 12.3\\(8\\)jk

cisco ios 12.4\\(2\\)t5

cisco ios 12.2\\(13\\)zh4

cisco ios 12.0\\(7\\)s1

cisco ios 12.4\\(4\\)t4

cisco ios 12.2\\(15\\)zn

cisco ios 12.3\\(2\\)t3

cisco ios 12.3\\(11\\)jx1

cisco ios 12.1\\(5\\)xm2

cisco ios 12.3\\(11\\)yk

cisco ios 12.4\\(4\\)xd2

cisco ios 12.3\\(7\\)t2

cisco ios 12.3\\(14\\)t

cisco ios 12.3\\(3\\)b

cisco ios 12.3\\(2\\)t8

cisco ios 12.3\\(14\\)ym7

cisco ios 12.4\\(6\\)t5

cisco ios 12.3\\(14\\)ym2

cisco ios 12.0\\(6\\)s

cisco ios 12.3\\(8\\)yd1

cisco ios 12.4\\(2\\)t3

cisco ios 12.3\\(11\\)xl1

cisco ios 12.3\\(2\\)xe

cisco ios 12.4\\(6\\)t3

cisco ios 12.0\\(1\\)xe

cisco ios 12.0\\(11\\)s1

cisco ios 12.4\\(4\\)t1

cisco ios 12.3\\(4\\)xk

cisco ios 12.0\\(11\\)st1

cisco ios 12.2\\(25\\)se

cisco ios 12.3\\(1a\\)b

cisco ios 12.3\\(7\\)t3

cisco ios 12.0\\(4\\)xe

cisco ios 12.0\\(10\\)st1

cisco ios 12.3\\(11\\)ys

cisco ios 12.2\\(22\\)s

cisco ios 12.3\\(4\\)xh

cisco ios 12.2\\(11\\)yz1

cisco ios 12.2\\(13\\)zh2

cisco ios 12.3\\(8\\)t4

cisco ios 12.2\\(11\\)yz2

cisco ios 12.4\\(4\\)xc3

cisco ios 12.0\\(2a\\)t1

cisco ios 12.0\\(6\\)s1

cisco ios 12.2\\(12h\\)m1

cisco ios 12.0\\(7\\)t

cisco ios 12.3\\(7\\)xs

cisco ios 12.0\\(11\\)st2

cisco ios 12.2\\(15\\)zl

cisco ios 12.0\\(5\\)xe3

cisco ios 12.4\\(4\\)t2

cisco ios 12.3\\(4\\)xd4

cisco ios 12.1\\(5\\)xm

cisco ios 12.3\\(2\\)xa3

cisco ios 12.3\\(4\\)t

cisco ios 12.2\\(20\\)s5

cisco ios 12.0\\(11\\)st4

cisco ios 12.3\\(11\\)xl3

cisco ios 12.2\\(8\\)zb

cisco ios 12.2\\(13\\)zf1

cisco ios 12.3\\(4\\)xq

cisco ios 12.3\\(11\\)ys1

cisco ios 12.3\\(8\\)yd

cisco ios 12.3\\(4\\)xk4

cisco ios 12.3\\(11\\)yz

cisco ios 12.3\\(2\\)ja3

cisco ios 12.3\\(4\\)xg3

cisco ios 12.0\\(10\\)s7

cisco ios 12.1\\(5\\)xm7

cisco ios 12.0\\(7\\)t2

cisco ios 12.3\\(4\\)t7

cisco ios 12.3\\(4\\)xg5

cisco ios 12.4\\(2\\)t

cisco ios 12.1\\(5\\)xm4

cisco ios 12.3\\(7\\)xr4

cisco ios 12.3\\(2\\)t4

cisco ios 12.0\\(7\\)xk3

cisco ios 12.3\\(7\\)t

cisco ios 12.3\\(4\\)t4

cisco ios 12.3\\(8\\)yg2

cisco ios 12.0\\(11\\)s4

cisco ios 12.3\\(7\\)t11

cisco ios 12.0\\(1\\)t

cisco ios 12.0\\(8\\)s

cisco ios 12.3\\(14\\)yt

cisco ios 12.0\\(11\\)s2

cisco ios 12.0\\(5\\)xe

cisco ios 12.4\\(4\\)xc2

cisco ios 12.1\\(8b\\)ex4

cisco ios 12.4\\(6\\)t1

cisco ios 12.3\\(2\\)xf

cisco ios 12.3\\(8\\)yi1

cisco ios 12.3\\(14\\)ym6

cisco ios 12.3\\(2\\)xe3

cisco ios 12.3\\(7\\)xr5

cisco ios 12.2\\(9\\)yo

cisco ios 12.3\\(14\\)t6

cisco ios 12.3\\(8\\)ya

cisco ios 12.3\\(4\\)xg

cisco ios 12.3\\(11\\)ja2

cisco ios 12.3\\(2\\)t2

cisco ios 12.4\\(6\\)xe2

cisco ios 12.4\\(4\\)xd

cisco ios 12.0\\(5\\)xe4

cisco ios 12.3\\(7\\)t12

cisco ios 12.2\\(14\\)sz3

cisco ios 12.0\\(5\\)xe1

cisco ios 12.3\\(7\\)t7

cisco ios 12.3\\(8\\)ya1

cisco ios 12.4\\(4\\)xc5

cisco ios 12.3\\(8\\)yg4

cisco ios 12.3\\(11\\)t6

cisco ios 12.4\\(4\\)t3

cisco ios 12.0\\(10\\)s4

cisco ios 12.3\\(4\\)xd

cisco ios 12.3\\(2\\)t7

cisco ios 12.3\\(7\\)t6

cisco ios 12.4\\(9\\)t

cisco ios 12.2\\(18\\)s3

cisco ios 12.3\\(4\\)t1

cisco ios 12.2\\(15\\)zj5

cisco ios 12.0\\(4\\)t

cisco ios 12.2\\(15\\)zj2

cisco ios 12.3\\(8\\)t

cisco ios 12.3\\(11\\)t11

cisco ios 12.3\\(11\\)yk2

cisco ios 12.3\\(7\\)xr3

cisco ios 12.3\\(8\\)xx1

cisco ios 12.2\\(18\\)s4

cisco ios 12.3\\(4\\)t6

cisco ios 12.2\\(15\\)zj3

cisco ios 12.0\\(2\\)s

cisco ios 12.2\\(13\\)zf2

cisco ios 12.2\\(13\\)zh

cisco ios 12.4\\(4\\)xc1

cisco ios 12.3\\(11\\)yl

cisco ios 12.3\\(11\\)t5

cisco ios 12.2\\(9\\)yo2

cisco ios 12.2\\(18\\)s

cisco ios 12.3\\(4\\)xg1

cisco ios 12.0\\(7\\)t3

cisco ios 12.2\\(15\\)zj1

cisco ios 12.3\\(8\\)t10

cisco ios 12.3\\(2\\)t

cisco ios 12.0\\(10\\)s1

cisco ios 12.1\\(5c\\)ex

cisco ios 12.3\\(8\\)yi

cisco ios 12.0\\(7\\)xk2

cisco ios 12.2\\(14\\)sz2

cisco ios 12.0\\(2\\)xe4

cisco ios 12.2\\(20\\)s4

cisco ios 12.3\\(2\\)xa4

cisco ios 12.3\\(8\\)yi2

cisco ios 12.2\\(20\\)s3

cisco ios 12.0\\(6\\)s2

cisco ios 12.0\\(3\\)s

cisco ios 12.3\\(2\\)xc

cisco ios 12.3\\(2\\)t6

cisco ios 12.0\\(5\\)xe8

cisco ios 12.2\\(25\\)s2

cisco ios 12.4\\(4\\)xd1

cisco ios 12.2\\(18\\)s1

cisco ios 12.2\\(9\\)yo3

cisco ios 12.3\\(8\\)za

cisco ios 12.0\\(11\\)s5

cisco ios 12.4\\(4\\)t5

cisco ios 12.0\\(2\\)xe3

cisco ios 12.3\\(2\\)xc2

cisco ios 12.2\\(18\\)s2

cisco ios 12.3\\(11\\)yk1

cisco ios 12.3\\(14\\)yt1

cisco ios 12.3\\(5a\\)b4

cisco ios 12.0\\(2\\)xe1

cisco ios 12.4\\(2\\)xa

cisco ios 12.0\\(7\\)t1

cisco ios 12.3\\(8\\)yi3

cisco ios 12.0\\(5\\)xt1

cisco ios 12.3\\(11\\)t7

cisco ios 12.0\\(11\\)s6

cisco ios 12.1\\(5\\)xm3

cisco ios 12.3\\(7\\)t4

cisco ios 12.3\\(7\\)xs1

cisco ios 12.3\\(2\\)xc1

cisco ios 12.3\\(4\\)xg2

cisco ios 12.0\\(5\\)t

cisco ios 12.3\\(3\\)b1

cisco ios 12.3\\(5a\\)b1

cisco ios 12.0\\(10\\)st2

cisco ios 12.3\\(8\\)yh

cisco ios 12.3\\(4\\)xg4

cisco ios 12.0\\(10\\)s3b

cisco ios 12.3\\(8\\)t8

cisco ios 12.3\\(11\\)jx

cisco ios 12.3\\(2\\)xa5

cisco ios 12.2\\(15\\)zl1

cisco ios 12.3\\(7\\)xr6

cisco ios 12.3\\(11\\)t2

cisco ios 12.4\\(2\\)xa2

cisco ios 12.0\\(5\\)xe5

cisco ios 12.0\\(7\\)xk1

cisco ios 12.4\\(6\\)t2

cisco ios 12.0\\(10\\)s

cisco ios 12.3\\(8\\)yg5

cisco ios 12.0\\(10\\)s2

cisco ios 12.2\\(13\\)zh5

cisco ios 12.3\\(4\\)xd3

cisco ios 12.3\\(2\\)t5

cisco ios 12.4\\(4\\)xc4

cisco ios 12.0\\(5\\)xk

cisco ios 12.2\\(20\\)s

cisco ios 12.0\\(3\\)t2

cisco ios 12.3\\(2\\)xe2

cisco ios 12.0\\(4\\)s

cisco ios 12.4\\(11\\)sw1

cisco ios 12.2\\(14\\)sz5

cisco ios 12.3\\(4\\)tpc11a

cisco ios 12.3\\(2\\)xa2

cisco ios 12.3\\(7\\)t10

cisco ios 12.1\\(5c\\)ex1

cisco ios 12.3\\(8\\)t1

cisco ios 12.3\\(4\\)t8

cisco ios 12.3\\(14\\)ym9

cisco ios 12.1\\(5\\)xm8

cisco ios 12.3\\(4\\)xq1

cisco ios 12.4\\(6\\)xe1

cisco ios 12.2\\(14\\)sz

cisco ios 12.2\\(15\\)zj

cisco ios 12.3\\(14\\)t1

cisco ios 12.2\\(14\\)sz6

cisco ios 12.3\\(4\\)xk2

cisco ios 12.3\\(7\\)jx9

cisco ios 12.3\\(8\\)yg3

cisco ios 12.0\\(4\\)xe2

cisco ios 12.0\\(5\\)s

cisco ios 12.0\\(2\\)xe

cisco ios 12.2\\(20\\)s4a

cisco ios 12.2\\(20\\)s2a

cisco ios 12.2\\(11\\)yz3

cisco ios 12.0\\(28\\)s4a

cisco ios 12.3\\(9\\)m0

cisco ios 12.2\\(13b\\)m2

cisco ios 12.0\\(31\\)sz2

cisco ios 12.3\\(7\\)xi3a

cisco ios 12.3\\(9\\)m1

cisco ios 12.2\\(13b\\)m1

cisco ios 12.4\\(4\\)xd3

cisco ios 12.4\\(9\\)t0a

cisco ios 12.3\\(8\\)xx2b

cisco ios 12.3\\(8\\)xx2c

cisco ios 12.3\\(8\\)xx2a

cisco ios 12.3\\(11\\)yl1

cisco ios 12.3\\(7\\)xl

cisco ios 12.3\\(4\\)xh1

cisco ios 12.3\\(4\\)t5

cisco ios 12.3\\(11\\)to3

cisco ios 12.3\\(11\\)zb

cisco ios 12.3\\(8\\)yc2

cisco ios 12.3\\(8\\)t2

cisco ios 12.3\\(4\\)ye1

cisco ios 12.3\\(4\\)ye

cisco ios 12.3\\(8\\)yc3

cisco ios 12.3\\(8\\)yc1

cisco ios 12.3\\(7\\)xr1

cisco ios 12.3\\(8\\)xx2

cisco ios 12.3\\(8\\)yc

cisco ios 12.3\\(11\\)t1

cisco ios 12.3\\(11\\)xl2

cisco ios 12.4\\(5a\\)m0

cisco ios 12.3\\(11\\)zb1

cisco ios 12.3\\(11\\)yl2

cisco ios 12.3\\(10a\\)m0

cisco ios 12.2\\(15\\)zj4

cisco ios 12.3\\(5a\\)b0a

Exploits

Exploit DB: Cisco IOS 12.3(18) (FTP Server) - Remote (Attached to GDB)
/* Cisco IOS FTP server remote exploit by Andy Davis 2008 Cisco Advisory ID: cisco-sa-20070509-iosftp - May 2007 Specific hard-coded addresses for IOS 123(18) on a 2621XM ro ...

References

CWE-863http://www.cisco.com/en/US/products/products_security_advisory09186a00808399d0.shtmlhttp://www.securityfocus.com/bid/23885http://www.securitytracker.com/id?1018030http://secunia.com/advisories/25199http://www.osvdb.org/35334http://seclists.org/bugtraq/2009/Jan/0183.htmlhttp://www.vupen.com/english/advisories/2007/1749http://www.exploit-db.com/exploits/6155http://www.securityfocus.com/archive/1/494868https://exchange.xforce.ibmcloud.com/vulnerabilities/34197https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5036https://nvd.nist.govhttps://www.exploit-db.com/exploits/6155/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversalCVE-2024-26978CVE-2024-26982wirelessCVE-2023-6949CVE-2024-26980CVE-2024-32766CVE-2024-26939cache poisoning
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook