Lucene search

[email protected]CVE-2003-1490

HistoryOct 24, 2007 - 11:00 p.m.

CVE-2003-1490

2007-10-2423:00:00

CWE-20

[email protected]

web.nvd.nist.gov

sonicwall

firmware

denial of service

cve-2003-1490

buffer overflow

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.4 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.7%

JSON

SonicWall Pro running firmware 6.4.0.1 allows remote attackers to cause a denial of service (device reset) via a long HTTP POST to the internal interface, possibly due to a buffer overflow.

Affected configurations

NVD

Node

sonicwallpro100Match6.4.0.1

sonicwallpro200Match6.4.0.1

sonicwallpro300Match6.4.0.1

CPENameOperatorVersion
sonicwall:pro100sonicwall pro100eq6.4.0.1
sonicwall:pro200sonicwall pro200eq6.4.0.1
sonicwall:pro300sonicwall pro300eq6.4.0.1

CPE	Name	Operator	Version
sonicwall:pro100	sonicwall pro100	eq	6.4.0.1
sonicwall:pro200	sonicwall pro200	eq	6.4.0.1
sonicwall:pro300	sonicwall pro300	eq	6.4.0.1

References

securityreason.com/securityalert/3291

www.securityfocus.com/archive/1/319712

www.securityfocus.com/bid/7435

exchange.xforce.ibmcloud.com/vulnerabilities/11876

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.4 High

AI Score

Confidence

High

0.013 Low

EPSS

Percentile

85.7%

JSON

Related for CVE-2003-1490

cvelist1 nvd1