CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-4436

HIGH
7.8
CVSS Severity Score
EPSS Score0.1400%
EPSS Percentile10.37th
Published2005年12月21日
Last Modified2026年4月16日

Vulnerability Description

Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS after 12.3(2), 12.3(3)B, and 12.3(2)T and other products, allows remote attackers to cause a denial of service by sending a "spoofed neighbor announcement" with (1) mismatched k values or (2) "goodbye message" Type-Length-Value (TLV).

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html
🔗 http://marc.info/?l=full-disclosure&m=113504451523186&w=2
🔗 http://securitytracker.com/id?1015382
🔗 http://www.securityfocus.com/archive/1/419898/100/0/threaded
🔗 http://www.securityfocus.com/bid/15978
🔗 http://www.vupen.com/english/advisories/2005/3008
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5454
🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html

関連する脆弱性情報

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-266910.0

Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote at...

CVE-2005-266810.0

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before...

CVE-2005-103710.0

Unknown vulnerability in AIX 5.3.0, when configured as an NIS client, allows remote attackers to gain root privileges.