Lucene search

[email protected]CVE-2000-0522

HistoryJun 08, 2000 - 4:00 a.m.

CVE-2000-0522

2000-06-0804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2000-0522

rsa ace/server

remote attack

denial of service

udp flood

server crash

nvd.

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.014 Low

EPSS

Percentile

86.4%

JSON

RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server’s authentication request port with UDP packets, which causes the server to crash.

CPENameOperatorVersion
rsa:ace_serverrsa ace servereq3.3.1
rsa:ace_serverrsa ace servereq4.0
rsa:ace_serverrsa ace servereq3.1
rsa:ace_serverrsa ace servereq3.3
rsa:ace_serverrsa ace servereq4.1

CPE	Name	Operator	Version
rsa:ace_server	rsa ace server	eq	3.3.1
rsa:ace_server	rsa ace server	eq	4.0
rsa:ace_server	rsa ace server	eq	3.1
rsa:ace_server	rsa ace server	eq	3.3
rsa:ace_server	rsa ace server	eq	4.1

References

ftp://ftp.securid.com/support/outgoing/dos/readme.txt

archives.neohapsis.com/archives/bugtraq/2000-07/0197.html

www.securityfocus.com/bid/1332

www.securityfocus.com/templates/archive.pike?list=1&msg=011a01bfd14c%243c206960%24050010ac%40xtranet.co.uk

exchange.xforce.ibmcloud.com/vulnerabilities/5053

7.7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.014 Low

EPSS

Percentile

86.4%

JSON