CVE-2007-3537

Severity Score

7.8

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

IBM OS/400 (aka i5/OS) V4R2M0 through V5R3M0 on iSeries machines sends responses to TCP SYN-FIN packets, which allows remote attackers to obtain system information and possibly bypass firewall rules.

IBM OS/400 (también conocido como i5/OS) V4R2M0 hasta V5R3M0 en máquinas iSeries envía respuestas a paquetes TCP SYN-FIN, lo cual permite a atacantes remotos obtener información sensible y posiblemente evitar reglas de cortafuegos.

*Credits: N/A

CVSS Scores

NISTv2 7.8

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2007-07-03 CVE Reserved
2007-07-03 CVE Published
2024-05-06 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CAPEC

References (5)

URL	Tag	Source
http://osvdb.org/37792	Vdb Entry
http://www.securityfocus.com/bid/24706	Vdb Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/35173	Vdb Entry

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://secunia.com/advisories/25885	2017-07-29
http://www-1.ibm.com/support/docview.wss?uid=nas2742405285431729b86256e620067dc17	2017-07-29

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				r520 Search vendor "Ibm" for product "Os 400" and version "r520"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v4r2m0 Search vendor "Ibm" for product "Os 400" and version "v4r2m0"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v4r3 Search vendor "Ibm" for product "Os 400" and version "v4r3"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v4r4 Search vendor "Ibm" for product "Os 400" and version "v4r4"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v4r5 Search vendor "Ibm" for product "Os 400" and version "v4r5"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v5r1 Search vendor "Ibm" for product "Os 400" and version "v5r1"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v5r2m0 Search vendor "Ibm" for product "Os 400" and version "v5r2m0"		-		Affected
Ibm Search vendor "Ibm"		Os 400 Search vendor "Ibm" for product "Os 400"				v5r3m0 Search vendor "Ibm" for product "Os 400" and version "v5r3m0"		-		Affected