CVE-2005-2841 Detail

CVE-2005-2841

EPSS

92.1%V3

Vector

Network

Published

2005-09-08
02h00 +00:00

Modified

2017-10-09
22h57 +00:00

Official links

CVE.org

NVD

Notifications for a CVE

Stay informed of any changes for a specific CVE.

Notifications manage

List of Notifications

Notifications for a CVE

Stay informed of any changes for a specific CVE.

Criteria applied when sending the alert: compared with the last alert sent + differences in CISA, EPSS, CVSS, CWE, Solutions, CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

Specified here a CVE ID as CVE-2025-1234

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CVE Descriptions

Buffer overflow in Firewall Authentication Proxy for FTP and/or Telnet Sessions for Cisco IOS 12.2ZH and 12.2ZL, 12.3 and 12.3T, and 12.4 and 12.4T allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted user authentication credentials.

CVE Informations

Metrics

Metrics	Score	Severity	CVSS Vector	Source
V2	7.5		AV:N/AC:L/Au:N/C:P/I:P/A:P	[email protected]

EPSS

EPSS is a scoring model that predicts the likelihood of a vulnerability being exploited.

EPSS Score

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

EPSS Percentile

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

EPSS First.org

Exploit information

Exploit Database EDB-ID : 26233

Publication date : 2005-09-06
22h00 +00:00
Author : Markus
EDB Verified : Yes

source: https://www.securityfocus.com/bid/14770/info Cisco IOS Firewall Authentication Proxy is prone to a buffer overflow condition. Successful exploitation of this issue could cause a denial of service or potential execution of arbitrary code. This issue affects the FTP and Telnet protocols, but not HTTP. perl -e 'print "pass "; print "A" x 51; print "@ \n";'

Products Mentioned

Configuraton 0

Cisco>>Ios >> Version 12.2zh

Cisco>>Ios >> Version 12.2zh (Open CPE detail)

Cisco>>Ios >> Version 12.2zl

Cisco>>Ios >> Version 12.2zl (Open CPE detail)

Cisco>>Ios >> Version 12.3

Cisco>>Ios >> Version 12.3 (Open CPE detail)

Cisco>>Ios >> Version 12.3t

Cisco>>Ios >> Version 12.3t (Open CPE detail)

Cisco>>Ios >> Version 12.4

Cisco>>Ios >> Version 12.4 (Open CPE detail)

Cisco>>Ios >> Version 12.4t

Cisco>>Ios >> Version 12.4t (Open CPE detail)

References

http://www.kb.cert.org/vuls/id/236045
Tags : third-party-advisory, x_refsource_CERT-VN

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5317
Tags : vdb-entry, signature, x_refsource_OVAL

http://www.vupen.com/english/advisories/2005/1669
Tags : vdb-entry, x_refsource_VUPEN

http://www.cisco.com/warp/public/707/cisco-sa-20050907-auth_proxy.shtml
Tags : vendor-advisory, x_refsource_CISCO

CVE-2005-2841 : Detail

CVE-2005-2841

CVE Descriptions

CVE Informations

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 26233

Products Mentioned

Configuraton 0

References