CVE-2001-1194

Zyxel Prestige 681 and 1600 SDSL Routers allow remote attackers to cause a denial of service via malformed packets with (1) an IP length less than actual packet size, or (2) fragmented packets whose size exceeds 64 kilobytes after reassembly.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2001-12/0140.html
http://archives.neohapsis.com/archives/bugtraq/2001-12/0190.html
http://www.securityfocus.com/bid/3695	Patch Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/7704

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:zyxel:prestige_1600::::::::
	cpe:2.3:h:zyxel:prestige_681::::::::

History

No history.

Information

Published : 2001-12-14 05:00

Updated : 2017-07-11 01:29

NVD link : CVE-2001-1194

Mitre link : CVE-2001-1194

CVE.ORG link : CVE-2001-1194

JSON object : View

Products Affected

zyxel

prestige_681
prestige_1600

CWE

NVD-CWE-Other

{"id": "CVE-2001-1194", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2001-12-14T05:00:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2001-12/0140.html", "source": "cve@mitre.org"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2001-12/0190.html", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/3695", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7704", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Zyxel Prestige 681 and 1600 SDSL Routers allow remote attackers to cause a denial of service via malformed packets with (1) an IP length less than actual packet size, or (2) fragmented packets whose size exceeds 64 kilobytes after reassembly."}, {"lang": "es", "value": "Zyxel Prestige 681 y 1600 SDSL Routers permite a atacantes remotos causar una Denegaci\u00f3n de Servicio (DoS) mediante la malformaci\u00f3n de paquetes con:1: una longitud de IP menor que el tama\u00f1o real de los paquetes, 2: paquetes fragmentados cuyo tama\u00f1o excede los 64 kilobytes despu\u00e9s haber sido reensamblados."}], "lastModified": "2017-07-11T01:29:05.150", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:zyxel:prestige_1600:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "97BCA6B1-0BD5-4211-ADAB-5DD40A2DC302"}, {"criteria": "cpe:2.3:h:zyxel:prestige_681:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DB416117-3C35-4B3F-A366-CDE49A5BC579"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}