// For flags

CVE-2007-3923

 

Severity Score

7.8
*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

The Common Internet File System (CIFS) optimization in Cisco Wide Area Application Services (WAAS) 4.0.7 and 4.0.9, as used by Cisco WAE appliance and the NM-WAE-502 network module, when Edge Services are configured, allows remote attackers to cause a denial of service (loss of service) via a flood of TCP SYN packets to port (1) 139 or (2) 445.

La optimización Common Internet File System (CIFS)de Cisco Wide Area Application Services (WAAS) 4.0.7 y 4.0.9, tal y como se usa en Cisco WAE appliance y el módulo de red NM-WAE-502, cuando Edge Services está configurado, permite a atacantes remotos provocar una denegación de servicio (pérdida de servicio) mediante una indundación de paquetes TCP SYN al puerto (1) 139 ó (2) 445.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2007-07-20 CVE Reserved
  • 2007-07-21 CVE Published
  • 2024-07-01 EPSS Updated
  • 2024-08-07 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Wide Area Application Services
Search vendor "Cisco" for product "Wide Area Application Services"
4.0.7
Search vendor "Cisco" for product "Wide Area Application Services" and version "4.0.7"
-
Affected
in Cisco
Search vendor "Cisco"
Wide Area Application Engine
Search vendor "Cisco" for product "Wide Area Application Engine"
*-
Safe
Cisco
Search vendor "Cisco"
Wide Area Application Services
Search vendor "Cisco" for product "Wide Area Application Services"
4.0.7
Search vendor "Cisco" for product "Wide Area Application Services" and version "4.0.7"
-
Affected
in Cisco
Search vendor "Cisco"
Wide Area Application Engine Nm-wae-502
Search vendor "Cisco" for product "Wide Area Application Engine Nm-wae-502"
*-
Safe
Cisco
Search vendor "Cisco"
Wide Area Application Services
Search vendor "Cisco" for product "Wide Area Application Services"
4.0.9
Search vendor "Cisco" for product "Wide Area Application Services" and version "4.0.9"
-
Affected
in Cisco
Search vendor "Cisco"
Wide Area Application Engine
Search vendor "Cisco" for product "Wide Area Application Engine"
*-
Safe
Cisco
Search vendor "Cisco"
Wide Area Application Services
Search vendor "Cisco" for product "Wide Area Application Services"
4.0.9
Search vendor "Cisco" for product "Wide Area Application Services" and version "4.0.9"
-
Affected
in Cisco
Search vendor "Cisco"
Wide Area Application Engine Nm-wae-502
Search vendor "Cisco" for product "Wide Area Application Engine Nm-wae-502"
*-
Safe