Lucene search

MitreCVE-2009-4292

HistoryDec 10, 2009 - 11:30 p.m.

CVE-2009-4292

2009-12-1023:30:00

CWE-119

mitre

web.nvd.nist.gov

cve-2009-4292

buffer overflow

url filtering

internet initiative japan

seil/x1

seil/x2

seil/b1

firmware

remote code execution

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.147

Percentile

95.8%

JSON

Buffer overflow in the URL filtering function in Internet Initiative Japan SEIL/X1, SEIL/X2, and SEIL/B1 firmware 2.40 through 2.51 allows remote attackers to execute arbitrary code via unspecified vectors.

Affected configurations

Nvd

Node

iijseil\/x1_firmwareMatch2.40

iijseil\/x1_firmwareMatch2.41

iijseil\/x1_firmwareMatch2.42

iijseil\/x1_firmwareMatch2.50

iijseil\/x1_firmwareMatch2.51

AND

iijseil\/x1

Node

iijseil\/b1_firmwareMatch2.40

iijseil\/b1_firmwareMatch2.41

iijseil\/b1_firmwareMatch2.42

iijseil\/b1_firmwareMatch2.50

iijseil\/b1_firmwareMatch2.51

AND

iijseil\/b1

Node

iijseil\/x2_firmwareMatch2.40

iijseil\/x2_firmwareMatch2.41

iijseil\/x2_firmwareMatch2.42

iijseil\/x2_firmwareMatch2.50

iijseil\/x2_firmwareMatch2.51

AND

iijseil\/x2

VendorProductVersionCPE
iijseil\/x1_firmware2.40cpe:2.3:a:iij:seil\/x1_firmware:2.40:*:*:*:*:*:*:*
iijseil\/x1_firmware2.41cpe:2.3:a:iij:seil\/x1_firmware:2.41:*:*:*:*:*:*:*
iijseil\/x1_firmware2.42cpe:2.3:a:iij:seil\/x1_firmware:2.42:*:*:*:*:*:*:*
iijseil\/x1_firmware2.50cpe:2.3:a:iij:seil\/x1_firmware:2.50:*:*:*:*:*:*:*
iijseil\/x1_firmware2.51cpe:2.3:a:iij:seil\/x1_firmware:2.51:*:*:*:*:*:*:*
iijseil\/x1*cpe:2.3:h:iij:seil\/x1:*:*:*:*:*:*:*:*
iijseil\/b1_firmware2.40cpe:2.3:a:iij:seil\/b1_firmware:2.40:*:*:*:*:*:*:*
iijseil\/b1_firmware2.41cpe:2.3:a:iij:seil\/b1_firmware:2.41:*:*:*:*:*:*:*
iijseil\/b1_firmware2.42cpe:2.3:a:iij:seil\/b1_firmware:2.42:*:*:*:*:*:*:*
iijseil\/b1_firmware2.50cpe:2.3:a:iij:seil\/b1_firmware:2.50:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
iij	seil\/x1_firmware	2.40	cpe:2.3:a:iij:seil\/x1_firmware:2.40:::::::*
iij	seil\/x1_firmware	2.41	cpe:2.3:a:iij:seil\/x1_firmware:2.41:::::::*
iij	seil\/x1_firmware	2.42	cpe:2.3:a:iij:seil\/x1_firmware:2.42:::::::*
iij	seil\/x1_firmware	2.50	cpe:2.3:a:iij:seil\/x1_firmware:2.50:::::::*
iij	seil\/x1_firmware	2.51	cpe:2.3:a:iij:seil\/x1_firmware:2.51:::::::*
iij	seil\/x1	*	cpe:2.3:h:iij:seil\/x1::::::::
iij	seil\/b1_firmware	2.40	cpe:2.3:a:iij:seil\/b1_firmware:2.40:::::::*
iij	seil\/b1_firmware	2.41	cpe:2.3:a:iij:seil\/b1_firmware:2.41:::::::*
iij	seil\/b1_firmware	2.42	cpe:2.3:a:iij:seil\/b1_firmware:2.42:::::::*
iij	seil\/b1_firmware	2.50	cpe:2.3:a:iij:seil\/b1_firmware:2.50:::::::*

Rows per page:

1-10 of 181

References

jvn.jp/en/jp/JVN06362164/index.html

jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000069.html

osvdb.org/59362

secunia.com/advisories/37154

www.seil.jp/seilseries/security/2009/a00669.php

www.vupen.com/english/advisories/2009/3111

exchange.xforce.ibmcloud.com/vulnerabilities/54051

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

8.1

Confidence

Low

EPSS

0.147

Percentile

95.8%

JSON

Related for CVE-2009-4292