{ "id": "CVE-2014-2004", "sourceIdentifier": "vultures@jpcert.or.jp", "published": "2014-06-16T14:55:05.893", "lastModified": "2014-06-16T17:10:13.190", "vulnStatus": "Analyzed", "descriptions": [ { "lang": "en", "value": "The PPP Access Concentrator (PPPAC) on SEIL SEIL/x86 routers 1.00 through 3.10, SEIL/X1 routers 1.00 through 4.50, SEIL/X2 routers 1.00 through 4.50, SEIL/B1 routers 1.00 through 4.50, SEIL/Turbo routers 1.80 through 2.17, and SEIL/neu 2FE Plus routers 1.80 through 2.17 allows remote attackers to cause a denial of service (session termination or concentrator outage) via a crafted TCP packet." }, { "lang": "es", "value": "PPP Access Concentrator (PPPAC) en routers SEIL SEIL/x86 1.00 hasta 3.10, routers SEIL/X1 1.00 hasta 4.50, routers SEIL/X2 1.00 hasta 4.50, routers SEIL/B1 1.00 hasta 4.50, routers SEIL/Turbo 1.80 hasta 2.17 y routers SEIL/neu 2FE Plus 1.80 hasta 2.17 permite a atacantes remotos causar una denegaci\u00f3n de servicio (terminaci\u00f3n de sesi\u00f3n o interrupci\u00f3n de concentrador) a trav\u00e9s de un paquete TCP manipulado." } ], "metrics": { "cvssMetricV2": [ { "source": "nvd@nist.gov", "type": "Primary", "cvssData": { "version": "2.0", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "accessVector": "NETWORK", "accessComplexity": "LOW", "authentication": "NONE", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0 }, "baseSeverity": "MEDIUM", "exploitabilityScore": 10.0, "impactScore": 2.9, "acInsufInfo": false, "obtainAllPrivilege": false, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false } ] }, "weaknesses": [ { "source": "nvd@nist.gov", "type": "Primary", "description": [ { "lang": "en", "value": "CWE-119" } ] } ], "configurations": [ { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:1.80:*:*:*:*:*:*:*", "matchCriteriaId": "2D60C9B1-33AE-42B8-9521-20AF2351458A" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.05:*:*:*:*:*:*:*", "matchCriteriaId": "12D33318-9872-4757-9B6D-844A8FD34360" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.15:*:*:*:*:*:*:*", "matchCriteriaId": "6F463AD3-69F3-48EF-98E6-7F3BF06517A8" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.16:*:*:*:*:*:*:*", "matchCriteriaId": "C201F596-859B-4C9D-9043-5C82D75ADF93" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.17:*:*:*:*:*:*:*", "matchCriteriaId": "834A5422-67BC-4036-A007-60B41956D199" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/turbo:*:*:*:*:*:*:*:*", "matchCriteriaId": "DC88F5F6-CB51-4676-91D6-69668229E675" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:1.80:*:*:*:*:*:*:*", "matchCriteriaId": "B6A637B6-3EC2-4BD8-89B4-3B259140412E" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.05:*:*:*:*:*:*:*", "matchCriteriaId": "CC5F0F67-6961-478C-9895-7EFC2FD7CD2D" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.15:*:*:*:*:*:*:*", "matchCriteriaId": "5E159CF1-554D-4737-9506-59BFF0428C33" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.16:*:*:*:*:*:*:*", "matchCriteriaId": "73A44489-81E0-49F1-91EB-1E3CAA780313" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.17:*:*:*:*:*:*:*", "matchCriteriaId": "32543A8B-CD82-4B84-A4C2-EC4B18A0DAC6" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/neu_2fe_plus:*:*:*:*:*:*:*:*", "matchCriteriaId": "CFB4A421-197B-4654-B362-AEDA3ADADC33" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:1.00:*:*:*:*:*:*:*", "matchCriteriaId": "86111C25-1F23-43A0-A2C9-DADE78F16A0B" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:2.80:*:*:*:*:*:*:*", "matchCriteriaId": "01A2F64E-4C0E-47F8-B314-3A4B101F23B5" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:2.81:*:*:*:*:*:*:*", "matchCriteriaId": "B1C5DA19-0661-4735-AE91-E65EB59850EC" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:2.82:*:*:*:*:*:*:*", "matchCriteriaId": "85398E2A-B6E0-40ED-855F-7EFEFE350B6E" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:3.10:*:*:*:*:*:*:*", "matchCriteriaId": "BE60DCDF-C5A6-4BC8-9E5A-B2DA63517CCC" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/x86:*:*:*:*:*:*:*:*", "matchCriteriaId": "477E1688-0CA2-4BD0-A29C-3239B760FA3C" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx2_firmware:1.00:*:*:*:*:*:*:*", "matchCriteriaId": "B02919BA-9D40-4882-A2E0-BE02EBF18862" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx2_firmware:1.80:*:*:*:*:*:*:*", "matchCriteriaId": "F6DEE92C-0381-479B-8EA6-DB6EEE216764" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx2_firmware:4.30:*:*:*:*:*:*:*", "matchCriteriaId": "C8A57950-024E-4F86-ADC5-6ED33966CD73" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx2_firmware:4.50:*:*:*:*:*:*:*", "matchCriteriaId": "F0073D30-C4C7-4E12-A53D-4116496E3677" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/x2:*:*:*:*:*:*:*:*", "matchCriteriaId": "BF54D2DC-48BF-4E7D-BC33-1010B8DBF9E2" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:1.00:*:*:*:*:*:*:*", "matchCriteriaId": "9F2F6546-4443-48EE-B29E-B2999A22E906" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:4.30:*:*:*:*:*:*:*", "matchCriteriaId": "9EA8CA61-D4F6-4A11-87FC-E0898C73A04E" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:4.31:*:*:*:*:*:*:*", "matchCriteriaId": "11EAE136-B926-4FFE-B799-C13356F1848F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:4.32:*:*:*:*:*:*:*", "matchCriteriaId": "1A8330E7-F52F-4C12-A07F-FBD3C01D382A" }, { "vulnerable": false, "criteria": "cpe:2.3:o:iij:seil\\/x1_firmware:4.50:*:*:*:*:*:*:*", "matchCriteriaId": "0E686229-8BBE-48C0-B953-DF6B82A2B2D1" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/x1:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A63E557-3BA6-4E0E-8597-BAA112B21DEF" } ] } ] }, { "operator": "AND", "nodes": [ { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:1.00:*:*:*:*:*:*:*", "matchCriteriaId": "745A1DDE-27CA-4E82-9D7A-E6A11404E02E" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:4.30:*:*:*:*:*:*:*", "matchCriteriaId": "8AB1D5F4-986D-4D3F-800B-2BDD2EDE7DC7" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:4.31:*:*:*:*:*:*:*", "matchCriteriaId": "7FE74E12-BDED-4459-89F9-18B0D621BF0F" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:4.32:*:*:*:*:*:*:*", "matchCriteriaId": "C09830F5-3D79-455E-B211-A7B46318C83C" }, { "vulnerable": true, "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:4.50:*:*:*:*:*:*:*", "matchCriteriaId": "2B80FBBD-1972-451A-98F2-80318DD37FF5" } ] }, { "operator": "OR", "negate": false, "cpeMatch": [ { "vulnerable": true, "criteria": "cpe:2.3:h:iij:seil\\/b1:*:*:*:*:*:*:*:*", "matchCriteriaId": "4BE3BBD4-FB2E-4543-9149-0452B26FAC31" } ] } ] } ], "references": [ { "url": "http://jvn.jp/en/jp/JVN10724763/index.html", "source": "vultures@jpcert.or.jp" }, { "url": "http://jvndb.jvn.jp/jvndb/JVNDB-2014-000055", "source": "vultures@jpcert.or.jp" }, { "url": "http://www.seil.jp/support/security/a01443.html", "source": "vultures@jpcert.or.jp" } ] }