Vulnerability Details : CVE-2007-3923
The Common Internet File System (CIFS) optimization in Cisco Wide Area Application Services (WAAS) 4.0.7 and 4.0.9, as used by Cisco WAE appliance and the NM-WAE-502 network module, when Edge Services are configured, allows remote attackers to cause a denial of service (loss of service) via a flood of TCP SYN packets to port (1) 139 or (2) 445.
Vulnerability category: Denial of service
Products affected by CVE-2007-3923
- cpe:2.3:a:cisco:wide_area_application_services:4.0.7:*:*:*:*:*:*:*When used together with: Cisco » Wide Area Application EngineWhen used together with: Cisco » Wide Area Application Engine Nm-wae-502
- cpe:2.3:a:cisco:wide_area_application_services:4.0.9:*:*:*:*:*:*:*When used together with: Cisco » Wide Area Application EngineWhen used together with: Cisco » Wide Area Application Engine Nm-wae-502
Exploit prediction scoring system (EPSS) score for CVE-2007-3923
2.28%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 90 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2007-3923
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
References for CVE-2007-3923
Jump to