14 matches found
EUVD-2013-4560
Malware in sbrugna...
CVE-2015-0887
npppd in the PPP Access Concentrator PPPAC on SEIL SEIL/x86 Fuji routers 1.00 through 3.30, SEIL/X1 routers 3.50 through 4.70, SEIL/X2 routers 3.50 through 4.70, and SEIL/B1 routers 3.50 through 4.70 allows remote attackers to cause a denial of service infinite loop and device hang via a crafted...
Code injection
npppd in the PPP Access Concentrator PPPAC on SEIL SEIL/x86 Fuji routers 1.00 through 3.30, SEIL/X1 routers 3.50 through 4.70, SEIL/X2 routers 3.50 through 4.70, and SEIL/B1 routers 3.50 through 4.70 allows remote attackers to cause a denial of service infinite loop and device hang via a crafted...
CVE-2015-0887
npppd in the PPP Access Concentrator PPPAC on SEIL SEIL/x86 Fuji routers 1.00 through 3.30, SEIL/X1 routers 3.50 through 4.70, SEIL/X2 routers 3.50 through 4.70, and SEIL/B1 routers 3.50 through 4.70 allows remote attackers to cause a denial of service infinite loop and device hang via a crafted...
CVE-2014-7256
The 1 PPP Access Concentrator PPPAC and 2 Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers SEIL/x86 Fuji 1.00 through 3.22; SEIL/X1, SEIL/X2, and SEIL/B1 1.00 through 4.62; SEIL/Turbo 1.82 through 2.18; and SEIL/neu 2FE Plus 1.82 through 2.18 allow remote attackers to cause a...
JVN#04895240: SEIL Series routers vulnerable to denial-of-service (DoS)
The PPP Access Concentrator PPPAC and the Dial-Up Networking in SEIL Series routers provided by Internet Initiative Japan Inc. contain a denial-of-service DoS vulnerability due to an issue in processing certain packets CWE-119. Impact By receiving a specially crafted packet, the device may be...
CVE-2014-2004
The CVE-2014-2004 issue affects SEIL Series routers (SEIL/x86 1.00–3.10; SEIL/X1 1.00–4.50; SEIL/X2 1.00–4.50; SEIL/B1 1.00–4.50; SEIL/Turbo 1.80–2.17; SEIL/neu 2FE Plus 1.80–2.17) where the PPP Access Concentrator (PPPAC) can be forced into a DoS state by receiving a crafted TCP packet. Root cau...
CVE-2013-4708
The CVE-2013-4708 issue affects SEIL Series routers from Internet Initiative Japan Inc. The vuln arises from predictable random-number generation in the PPP Access Concentrator (PPPAC) when performing RADIUS authentication, allowing remote attackers who can sniff RADIUS traffic to bypass authenti...
CVE-2013-4709
Buffer overflow in the PPP Access Concentrator PPPAC on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.32, SEIL/Turbo with firmware before 2.16, and SEIL/neu 2FE Plus with firmware before 2.16 allows...
CVE-2013-4709
CVE-2013-4709 affects SEIL Series routers (PPPAC) where the PPP Access Concentrator mis-processes L2TP messages, enabling remote code execution. Vulnerable firmware ranges include SEIL/x86 before 2.82, SEIL/X1 before 4.32, SEIL/X2 before 4.32, SEIL/B1 before 4.32, SEIL/Turbo before 2.16, and SEIL...
CVE-2013-4709
Buffer overflow in the PPP Access Concentrator PPPAC on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.32, SEIL/Turbo with firmware before 2.16, and SEIL/neu 2FE Plus with firmware before 2.16 allows...
CVE-2011-0454
SEIL Series routers (PPPoE PPPoE PPPAC) contain a buffer overflow vulnerability in the PPP Access Concentrator when processing PPPoE packets. Affected firmware ranges include SEIL/x86 1.00–1.61, SEIL/B1 1.00–3.11, SEIL/X1 1.00–3.11, SEIL/X2 1.00–3.11, SEIL/Turbo 1.80–2.10, and SEIL/neu 2FE Plus 1...
Authentication flaw
The 1 CHAP and 2 MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator PPPAC function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack...
JVN#49602378 SEIL/B1 authentication issue
The PPP Access Concentrator PPPAC function within SEIL/B1 contains an issue in the CHAP and MS-CHAP-V2 authentication processes, the same challenge value is repeatedly used for each authentication attempt. Impact A third party may be able to perform replay attacks. As a result, the third party ma...