CVE-2001-1194

Zyxel Prestige 681 and 1600 SDSL Routers allow remote attackers to cause a denial of service via malformed packets with (1) an IP length less than actual packet size, or (2) fragmented packets whose size exceeds 64 kilobytes after reassembly.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.securityfocus.com/bid/3695	Patch Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2001-12/0140.html
http://archives.neohapsis.com/archives/bugtraq/2001-12/0190.html
https://exchange.xforce.ibmcloud.com/vulnerabilities/7704

Configurations

Configuration 1 (hide)

OR	cpe:2.3:h:zyxel:prestige_1600::::::::
	cpe:2.3:h:zyxel:prestige_681::::::::

Information

Published : 2001-12-13 21:00

Updated : 2017-07-10 18:29

NVD link : CVE-2001-1194

Mitre link : CVE-2001-1194

JSON object : View

CWE

NVD-CWE-Other

Products Affected

zyxel

prestige_1600
prestige_681

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/3695", "name": "3695", "tags": ["Patch", "Vendor Advisory"], "refsource": "BID"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2001-12/0140.html", "name": "20011214 Zyxel Prestige 681 and 1600 (possibly other?) remote DoS", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2001-12/0190.html", "name": "20011218 Re: Zyxel Prestige 681 and 1600 (possibly other?) remote DoS", "tags": [], "refsource": "BUGTRAQ"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7704", "name": "prestige-dsl-packet-length-dos(7704)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Zyxel Prestige 681 and 1600 SDSL Routers allow remote attackers to cause a denial of service via malformed packets with (1) an IP length less than actual packet size, or (2) fragmented packets whose size exceeds 64 kilobytes after reassembly."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2001-1194", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2001-12-14T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:zyxel:prestige_1600:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:h:zyxel:prestige_681:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-11T01:29Z"}

5.0 /10