CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-4436

HIGH
7.8
CVSS Severity Score
EPSS Score0.1400%
EPSS Percentile10.37th
Published2005年12月21日
Last Modified2026年4月16日

Vulnerability Description

Extended Interior Gateway Routing Protocol (EIGRP) 1.2, as implemented in Cisco IOS after 12.3(2), 12.3(3)B, and 12.3(2)T and other products, allows remote attackers to cause a denial of service by sending a "spoofed neighbor announcement" with (1) mismatched k values or (2) "goodbye message" Type-Length-Value (TLV).

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html
🔗 http://marc.info/?l=full-disclosure&m=113504451523186&w=2
🔗 http://securitytracker.com/id?1015382
🔗 http://www.securityfocus.com/archive/1/419898/100/0/threaded
🔗 http://www.securityfocus.com/bid/15978
🔗 http://www.vupen.com/english/advisories/2005/3008
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5454
🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2005-December/040330.html

相關漏洞威脅

CVE-2005-129910.0

The inserter.cgi script allows remote attackers to execute arbitrary commands via shell metacharacters in the argument.

CVE-2005-044110.0

Multiple stack-based buffer overflows in Sybase Adaptive Server Enterprise (ASE) 12.x before 12.5.3 ESD#1 allow remote authenticat...

CVE-2005-266810.0

Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before...

CVE-2005-089210.0

Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL ...