CVE-2007-5134

Name of the Vulnerable Software and Affected Versions Cisco Catalyst 6500 and Cisco 7600 series devices (affected versions not specified)

Description The issue concerns the use of 127/8 IP addresses for internal communication in Cisco devices, potentially allowing remote attackers to bypass configured ACLs and send packets to unintended interfaces. This could affect management addresses and intelligent modules. The vulnerability exists because the affected devices accept traffic to IP addresses reserved for the Ethernet Out-of-Band Channel (EOBC), which are not typically protected by ACLs. An attacker could exploit this to bypass ACLs, but would still need to authenticate to perform actions like modifying configuration files. The estimated number of potentially affected devices is not provided, and there is no information about real-world incidents where this issue was exploited.

Recommendations For Catalyst 6500 and Cisco 7600 series devices, update the software to version 12.2(33)SXH or later to resolve the issue. As a temporary workaround, consider utilizing ACLs or Control Plane Policing (CoPP) to prevent unwanted traffic from reaching intelligent management cards.