Lucene search

[email protected]CVE-2004-0674

HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0674

2004-08-0604:00:00

[email protected]

web.nvd.nist.gov

enterasys

xsr-1800

security routers

firmware

denial of service

vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.2%

JSON

Enterasys XSR-1800 series Security Routers, when running firmware 7.0.0.0 and using Policy-Based Routing, allow remote attackers to cause a denial of service (crash) via a packet with the IP record route option set.

Affected configurations

NVD

Node

enterasysxsr-1805Match7.0.0.0

enterasysxsr-1850Match7.0.0.0

enterasysxsr-3000

CPENameOperatorVersion
enterasys:xsr-1805enterasys xsr-1805eq7.0.0.0
enterasys:xsr-1850enterasys xsr-1850eq7.0.0.0
enterasys:xsr-3000enterasys xsr-3000eq*

CPE	Name	Operator	Version
enterasys:xsr-1805	enterasys xsr-1805	eq	7.0.0.0
enterasys:xsr-1850	enterasys xsr-1850	eq	7.0.0.0
enterasys:xsr-3000	enterasys xsr-3000	eq	*

References

marc.info/?l=bugtraq&m=108886995627906&w=2

www.enterasys.com/support/security/incidents/2004/07/11036.html

www.securityfocus.com/bid/10653

exchange.xforce.ibmcloud.com/vulnerabilities/16616

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.012 Low

EPSS

Percentile

85.2%

JSON

Related for CVE-2004-0674

nvd1 cvelist1