ID CVE-2006-6411Type cveReporter cve@mitre.orgModified 2018-10-17T21:48:00
Description
PhoneCtrl.exe in Linksys WIP 330 Wireless-G IP Phone 1.00.06A allows remote attackers to cause a denial of service (crash) via a TCP SYN scan, as demonstrated using TCP ports 1-65535 with nmap.
{"id": "CVE-2006-6411", "bulletinFamily": "NVD", "title": "CVE-2006-6411", "description": "PhoneCtrl.exe in Linksys WIP 330 Wireless-G IP Phone 1.00.06A allows remote attackers to cause a denial of service (crash) via a TCP SYN scan, as demonstrated using TCP ports 1-65535 with nmap.", "published": "2006-12-10T02:28:00", "modified": "2018-10-17T21:48:00", "cvss": {"score": 7.8, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:C"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-6411", "reporter": "cve@mitre.org", "references": ["http://www.securityfocus.com/archive/1/453754/100/0/threaded", "http://www.vupen.com/english/advisories/2006/4894", "http://secunia.com/advisories/23256", "http://lists.grok.org.uk/pipermail/full-disclosure/2006-December/051140.html", "http://securityreason.com/securityalert/2009", "https://exchange.xforce.ibmcloud.com/vulnerabilities/30771", "http://www.securityfocus.com/bid/21475"], "cvelist": ["CVE-2006-6411"], "type": "cve", "lastseen": "2020-10-03T11:48:19", "edition": 3, "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "osvdb", "idList": ["OSVDB:31842"]}], "modified": "2020-10-03T11:48:19", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2020-10-03T11:48:19", "rev": 2}, "vulnersScore": 5.4}, "cpe": ["cpe:/h:linksys:wip_330_wireless-g_ip_phone:1.0.6_a"], "affectedSoftware": [{"cpeName": "linksys:wip_330_wireless-g_ip_phone", "name": "linksys wip 330 wireless-g ip phone", "operator": "eq", "version": "1.0.6_a"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "HIGH", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:h:linksys:wip_330_wireless-g_ip_phone:1.0.6_a:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:h:linksys:wip_330_wireless-g_ip_phone:1.0.6_a:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}}
{"osvdb": [{"lastseen": "2017-04-28T13:20:28", "bulletinFamily": "software", "cvelist": ["CVE-2006-6411"], "description": "# No description provided by the source\n\n## References:\n[Secunia Advisory ID:23256](https://secuniaresearch.flexerasoftware.com/advisories/23256/)\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-12/0114.html\nISS X-Force ID: 30771\nFrSIRT Advisory: ADV-2006-4894\n[CVE-2006-6411](https://vulners.com/cve/CVE-2006-6411)\nBugtraq ID: 21475\n", "edition": 1, "modified": "2006-12-06T04:48:51", "published": "2006-12-06T04:48:51", "href": "https://vulners.com/osvdb/OSVDB:31842", "id": "OSVDB:31842", "title": "Linksys WIP 330 PhoneCtrl.exe TCP Port Scan DoS", "type": "osvdb", "cvss": {"score": 7.8, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:COMPLETE/"}}]}
