CVE-2007-5651

Name of the Vulnerable Software and Affected Versions Cisco IOS versions 12.1 through 12.4 Cisco CatOS versions 6.x through 8.x

Description The issue is related to an unspecified vulnerability in the Extensible Authentication Protocol (EAP) implementation, which allows remote attackers to cause a denial of service (device reload) via a crafted EAP Response Identity packet.

Recommendations For Cisco IOS versions 12.1 through 12.4, consider disabling EAP until a patch is available. For Cisco CatOS versions 6.x through 8.x, restrict access to EAP to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.