cvelistv5 - cve-2002-0886

CVE-2002-0886 (GCVE-0-2002-0886)

Vulnerability from cvelistv5 – Published: 2002-08-31 04:00 – Updated: 2024-08-08 03:03

Summary

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.cisco.com/warp/public/707/CBOS-DoS.shtml	vendor-advisoryx_refsource_CISCO
	http://www.securityfocus.com/bid/4813	vdb-entryx_refsource_BID
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://www.securityfocus.com/bid/4814	vdb-entryx_refsource_BID
	http://www.iss.net/security_center/static/9153.php	vdb-entryx_refsource_XF
	http://www.iss.net/security_center/static/9151.php	vdb-entryx_refsource_XF
	http://www.securityfocus.com/bid/4815	vdb-entryx_refsource_BID

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:03:49.300Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "20020523 CBOS - Improving Resilience to Denial-of-Service Attacks",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
          },
          {
            "name": "4813",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/4813"
          },
          {
            "name": "cisco-cbos-telnet-cpe-dos(9152)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
          },
          {
            "name": "4814",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/4814"
          },
          {
            "name": "cisco-cbos-tcpip-dos(9153)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/9153.php"
          },
          {
            "name": "cisco-cbos-dhcp-dos(9151)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/9151.php"
          },
          {
            "name": "4815",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/4815"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-05-23T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "20020523 CBOS - Improving Resilience to Denial-of-Service Attacks",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
        },
        {
          "name": "4813",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/4813"
        },
        {
          "name": "cisco-cbos-telnet-cpe-dos(9152)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
        },
        {
          "name": "4814",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/4814"
        },
        {
          "name": "cisco-cbos-tcpip-dos(9153)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/9153.php"
        },
        {
          "name": "cisco-cbos-dhcp-dos(9151)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/9151.php"
        },
        {
          "name": "4815",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/4815"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-0886",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20020523 CBOS - Improving Resilience to Denial-of-Service Attacks",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
            },
            {
              "name": "4813",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/4813"
            },
            {
              "name": "cisco-cbos-telnet-cpe-dos(9152)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
            },
            {
              "name": "4814",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/4814"
            },
            {
              "name": "cisco-cbos-tcpip-dos(9153)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/9153.php"
            },
            {
              "name": "cisco-cbos-dhcp-dos(9151)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/9151.php"
            },
            {
              "name": "4815",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/4815"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-0886",
    "datePublished": "2002-08-31T04:00:00",
    "dateReserved": "2002-08-16T00:00:00",
    "dateUpdated": "2024-08-08T03:03:49.300Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8EE29F62-FF38-4951-B3CB-2B9102CB9291\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9EEF0CEB-4CCF-46B1-99BC-8301CD422371\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9A6E05A1-524C-441C-A4E2-F2E9DE62E82A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3875EB7E-7D22-4C3D-80CD-A7E8A249E97F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CFD36C73-8CAC-4DDB-8A64-11DAC075D300\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC7E0234-23B5-41D4-A8B5-04C5BB881F3A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B2277233-E3EB-42F0-BB02-068E50A09265\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"59C80FB5-35CC-4FE2-8C98-A560B7D5C479\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADC81B47-C744-4776-BFB6-AA70D35A4140\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB66DFA6-089D-4200-87CB-AB1404A48EF2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CEFB61AC-25EE-46E4-9F34-70569EF74CFF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E81CFA0E-04B7-406A-899B-157FC1862501\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4737C7E7-1E40-40F6-A6B3-4CE1465F4105\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A18E9CCC-D8EB-4778-B444-14314651CA9B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D6D52CBF-D6F7-47C1-81E6-714F50F5E6BC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB7AF093-B5E2-4C4F-997B-5ECB5192A524\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E8FFFBE5-EE4C-4A10-8D94-015438A39C76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A3BFEC03-6715-4821-8AA0-EF90E1D68DBF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7E7405D-78C0-4C31-A996-B1EF09EEA205\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DDDEB295-B551-4D48-A542-1FC035C78F02\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5094C442-AB4F-41C3-8C83-4B7CB6E2A980\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.\"}]",
      "id": "CVE-2002-0886",
      "lastModified": "2024-11-20T23:40:06.667",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:P\", \"baseScore\": 5.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 10.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2002-10-04T04:00:00.000",
      "references": "[{\"url\": \"http://www.cisco.com/warp/public/707/CBOS-DoS.shtml\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.iss.net/security_center/static/9151.php\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.iss.net/security_center/static/9153.php\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/4813\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/4814\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/4815\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/9152\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.cisco.com/warp/public/707/CBOS-DoS.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.iss.net/security_center/static/9151.php\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.iss.net/security_center/static/9153.php\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/4813\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/4814\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/4815\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/9152\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2002-0886\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2002-10-04T04:00:00.000\",\"lastModified\":\"2025-04-03T01:03:51.193\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:P\",\"baseScore\":5.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":10.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8EE29F62-FF38-4951-B3CB-2B9102CB9291\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9EEF0CEB-4CCF-46B1-99BC-8301CD422371\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9A6E05A1-524C-441C-A4E2-F2E9DE62E82A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3875EB7E-7D22-4C3D-80CD-A7E8A249E97F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CFD36C73-8CAC-4DDB-8A64-11DAC075D300\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC7E0234-23B5-41D4-A8B5-04C5BB881F3A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B2277233-E3EB-42F0-BB02-068E50A09265\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59C80FB5-35CC-4FE2-8C98-A560B7D5C479\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADC81B47-C744-4776-BFB6-AA70D35A4140\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB66DFA6-089D-4200-87CB-AB1404A48EF2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CEFB61AC-25EE-46E4-9F34-70569EF74CFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E81CFA0E-04B7-406A-899B-157FC1862501\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4737C7E7-1E40-40F6-A6B3-4CE1465F4105\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A18E9CCC-D8EB-4778-B444-14314651CA9B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D6D52CBF-D6F7-47C1-81E6-714F50F5E6BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB7AF093-B5E2-4C4F-997B-5ECB5192A524\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8FFFBE5-EE4C-4A10-8D94-015438A39C76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A3BFEC03-6715-4821-8AA0-EF90E1D68DBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7E7405D-78C0-4C31-A996-B1EF09EEA205\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DDDEB295-B551-4D48-A542-1FC035C78F02\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5094C442-AB4F-41C3-8C83-4B7CB6E2A980\"}]}]}],\"references\":[{\"url\":\"http://www.cisco.com/warp/public/707/CBOS-DoS.shtml\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.iss.net/security_center/static/9151.php\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.iss.net/security_center/static/9153.php\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/4813\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/4814\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/4815\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/9152\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.cisco.com/warp/public/707/CBOS-DoS.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.iss.net/security_center/static/9151.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.iss.net/security_center/static/9153.php\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/4813\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/4814\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/4815\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/9152\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

VAR-200210-0188

Vulnerability from variot - Updated: 2023-12-18 13:54

Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory. When the CBOS TCP/IP stack is forced to process a high number of unusually large packets, it will consume all memory. This will cause the router to freeze and stop forwarding packets. CBOS (Cisco Broadband Operating System) is the operating system for Cisco 600 series routers. It is possible for a remote user to cause a denial of service of a CPE running CBOS software 2.4.4 and prior. Sending an unusually large packet to the telnet port will exploit this issue. The following devices in the Cisco 600 series of routers are affected by this issue: 605, 626, 627, 633, 673, 675, 675e, 676, 677, 677i and 678. This vulnerability has been assigned Cisco Bug ID CSCdv50135. CBOS does not correctly process the information packets submitted to the DHCP server, which can lead to denial of service attacks by remote attackers. The vulnerability number is: CSCdw90020

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200210-0188",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.4.4"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.4.3"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.4.2"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.4.1"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.3.9"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.3.8"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 2.5,
        "vendor": "cisco",
        "version": "2.3.7.002"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3.7"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3.5.015"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3.5"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3.2"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.3"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.2.1"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "cisco",
        "version": "2.0.1"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "2.4.2ap"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "2.3_.053"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "2.4.2b"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "2.1.0"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "2.2.0"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "2.1.0a"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "2.2.1a"
      },
      {
        "model": "cbos b",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.4.2"
      },
      {
        "model": "cbos ap",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.4.2"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.3.053"
      },
      {
        "model": "cbos a",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.2.1"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.2"
      },
      {
        "model": "cbos a",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.1"
      },
      {
        "model": "cbos",
        "scope": "eq",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.1"
      },
      {
        "model": "cbos",
        "scope": "ne",
        "trust": 0.9,
        "vendor": "cisco",
        "version": "2.4.5"
      }
    ],
    "sources": [
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Discovery of this issue is credited to Knud Erik H\u00f8jgaard from Cybercity,\nDenmark.",
    "sources": [
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2002-0886",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-5277",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:P",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2002-0886",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200210-028",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-5277",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory. \nWhen the CBOS TCP/IP stack is forced to process a high number of unusually large packets, it will consume all memory.  This will cause the router to freeze and stop forwarding packets. CBOS (Cisco Broadband Operating System) is the operating system for Cisco\n600 series routers. \nIt is possible for a remote user to cause a denial of service of a CPE running CBOS software 2.4.4 and prior. \nSending an unusually large packet to the telnet port will exploit this issue. \nThe following devices in the Cisco 600 series of routers are affected by this issue:\n605, 626, 627, 633, 673, 675, 675e, 676, 677, 677i and 678. \nThis vulnerability has been assigned Cisco Bug ID CSCdv50135. CBOS does not correctly process the information packets submitted to the DHCP server, which can lead to denial of service attacks by remote attackers. The vulnerability number is: CSCdw90020",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      },
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      }
    ],
    "trust": 1.8
  },
  "exploit_availability": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "reference": "https://www.scap.org.cn/vuln/vhn-5277",
        "trust": 0.1,
        "type": "unknown"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      }
    ]
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "BID",
        "id": "4813",
        "trust": 2.0
      },
      {
        "db": "BID",
        "id": "4814",
        "trust": 2.0
      },
      {
        "db": "BID",
        "id": "4815",
        "trust": 2.0
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886",
        "trust": 2.0
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028",
        "trust": 0.7
      },
      {
        "db": "XF",
        "id": "9151",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "9152",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "9153",
        "trust": 0.6
      },
      {
        "db": "CISCO",
        "id": "20020523 CBOS - IMPROVING RESILIENCE TO DENIAL-OF-SERVICE ATTACKS",
        "trust": 0.6
      },
      {
        "db": "SEEBUG",
        "id": "SSVID-75298",
        "trust": 0.1
      },
      {
        "db": "EXPLOIT-DB",
        "id": "21472",
        "trust": 0.1
      },
      {
        "db": "VULHUB",
        "id": "VHN-5277",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "id": "VAR-200210-0188",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2023-12-18T13:54:24.894000Z",
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/4813"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/4814"
      },
      {
        "trust": 1.7,
        "url": "http://www.securityfocus.com/bid/4815"
      },
      {
        "trust": 1.7,
        "url": "http://www.cisco.com/warp/public/707/cbos-dos.shtml"
      },
      {
        "trust": 1.7,
        "url": "http://www.iss.net/security_center/static/9151.php"
      },
      {
        "trust": 1.7,
        "url": "http://www.iss.net/security_center/static/9153.php"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
      },
      {
        "trust": 0.9,
        "url": "http://www.cisco.com/en/us/products/sw/voicesw/ps4625/index.html"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/9152"
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      },
      {
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2002-10-04T00:00:00",
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "BID",
        "id": "4815"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "BID",
        "id": "4814"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "BID",
        "id": "4813"
      },
      {
        "date": "2002-10-04T04:00:00",
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-07-11T00:00:00",
        "db": "VULHUB",
        "id": "VHN-5277"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "BID",
        "id": "4815"
      },
      {
        "date": "2002-05-23T00:00:00",
        "db": "BID",
        "id": "4814"
      },
      {
        "date": "2009-07-11T12:46:00",
        "db": "BID",
        "id": "4813"
      },
      {
        "date": "2017-07-11T01:29:12.900000",
        "db": "NVD",
        "id": "CVE-2002-0886"
      },
      {
        "date": "2005-10-20T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "network",
    "sources": [
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      }
    ],
    "trust": 0.9
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco CBOS Oversized packet leads DHCP Denial of service attack vulnerability",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200210-028"
      }
    ],
    "trust": 0.6
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Failure to Handle Exceptional Conditions",
    "sources": [
      {
        "db": "BID",
        "id": "4815"
      },
      {
        "db": "BID",
        "id": "4814"
      },
      {
        "db": "BID",
        "id": "4813"
      }
    ],
    "trust": 0.9
  }
}

FKIE_CVE-2002-0886

Vulnerability from fkie_nvd - Published: 2002-10-04 04:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://www.cisco.com/warp/public/707/CBOS-DoS.shtml
cve@mitre.org	http://www.iss.net/security_center/static/9151.php	Patch, Vendor Advisory
cve@mitre.org	http://www.iss.net/security_center/static/9153.php
cve@mitre.org	http://www.securityfocus.com/bid/4813	Patch, Vendor Advisory
cve@mitre.org	http://www.securityfocus.com/bid/4814
cve@mitre.org	http://www.securityfocus.com/bid/4815
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/9152
af854a3a-2127-422b-91ae-364da2661108	http://www.cisco.com/warp/public/707/CBOS-DoS.shtml
af854a3a-2127-422b-91ae-364da2661108	http://www.iss.net/security_center/static/9151.php	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.iss.net/security_center/static/9153.php
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/4813	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/4814
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/4815
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/9152

Impacted products

Vendor	Product	Version
cisco	cbos	2.0.1
cisco	cbos	2.1.0
cisco	cbos	2.1.0a
cisco	cbos	2.2.0
cisco	cbos	2.2.1
cisco	cbos	2.2.1a
cisco	cbos	2.3
cisco	cbos	2.3.2
cisco	cbos	2.3.5
cisco	cbos	2.3.5.015
cisco	cbos	2.3.7
cisco	cbos	2.3.7.002
cisco	cbos	2.3.8
cisco	cbos	2.3.9
cisco	cbos	2.3_.053
cisco	cbos	2.4.1
cisco	cbos	2.4.2
cisco	cbos	2.4.2ap
cisco	cbos	2.4.2b
cisco	cbos	2.4.3
cisco	cbos	2.4.4

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8EE29F62-FF38-4951-B3CB-2B9102CB9291",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9EEF0CEB-4CCF-46B1-99BC-8301CD422371",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A6E05A1-524C-441C-A4E2-F2E9DE62E82A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "3875EB7E-7D22-4C3D-80CD-A7E8A249E97F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CFD36C73-8CAC-4DDB-8A64-11DAC075D300",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC7E0234-23B5-41D4-A8B5-04C5BB881F3A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "B2277233-E3EB-42F0-BB02-068E50A09265",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "59C80FB5-35CC-4FE2-8C98-A560B7D5C479",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "ADC81B47-C744-4776-BFB6-AA70D35A4140",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB66DFA6-089D-4200-87CB-AB1404A48EF2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "CEFB61AC-25EE-46E4-9F34-70569EF74CFF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*",
              "matchCriteriaId": "E81CFA0E-04B7-406A-899B-157FC1862501",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "4737C7E7-1E40-40F6-A6B3-4CE1465F4105",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "A18E9CCC-D8EB-4778-B444-14314651CA9B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*",
              "matchCriteriaId": "D6D52CBF-D6F7-47C1-81E6-714F50F5E6BC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB7AF093-B5E2-4C4F-997B-5ECB5192A524",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "E8FFFBE5-EE4C-4A10-8D94-015438A39C76",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*",
              "matchCriteriaId": "A3BFEC03-6715-4821-8AA0-EF90E1D68DBF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7E7405D-78C0-4C31-A996-B1EF09EEA205",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDDEB295-B551-4D48-A542-1FC035C78F02",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "5094C442-AB4F-41C3-8C83-4B7CB6E2A980",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory."
    }
  ],
  "id": "CVE-2002-0886",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2002-10-04T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.iss.net/security_center/static/9151.php"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.iss.net/security_center/static/9153.php"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/4813"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/4814"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/4815"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.iss.net/security_center/static/9151.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.iss.net/security_center/static/9153.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/4813"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/4814"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/4815"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-32P2-76XV-RJ3G

Vulnerability from github – Published: 2022-04-30 18:20 – Updated: 2022-04-30 18:20

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2002-0886"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2002-10-04T04:00:00Z",
    "severity": "MODERATE"
  },
  "details": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.",
  "id": "GHSA-32p2-76xv-rj3g",
  "modified": "2022-04-30T18:20:07Z",
  "published": "2022-04-30T18:20:07Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2002-0886"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
    },
    {
      "type": "WEB",
      "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
    },
    {
      "type": "WEB",
      "url": "http://www.iss.net/security_center/static/9151.php"
    },
    {
      "type": "WEB",
      "url": "http://www.iss.net/security_center/static/9153.php"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/4813"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/4814"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/4815"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2002-0886

Vulnerability from gsd - Updated: 2023-12-13 01:24

Details

Aliases

CVE-2002-0886

Aliases

CVE-2002-0886

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2002-0886",
    "description": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.",
    "id": "GSD-2002-0886"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2002-0886"
      ],
      "details": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.",
      "id": "GSD-2002-0886",
      "modified": "2023-12-13T01:24:07.765971Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2002-0886",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20020523 CBOS - Improving Resilience to Denial-of-Service Attacks",
            "refsource": "CISCO",
            "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
          },
          {
            "name": "4813",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/4813"
          },
          {
            "name": "cisco-cbos-telnet-cpe-dos(9152)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
          },
          {
            "name": "4814",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/4814"
          },
          {
            "name": "cisco-cbos-tcpip-dos(9153)",
            "refsource": "XF",
            "url": "http://www.iss.net/security_center/static/9153.php"
          },
          {
            "name": "cisco-cbos-dhcp-dos(9151)",
            "refsource": "XF",
            "url": "http://www.iss.net/security_center/static/9151.php"
          },
          {
            "name": "4815",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/4815"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-0886"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "4813",
              "refsource": "BID",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.securityfocus.com/bid/4813"
            },
            {
              "name": "cisco-cbos-dhcp-dos(9151)",
              "refsource": "XF",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.iss.net/security_center/static/9151.php"
            },
            {
              "name": "20020523 CBOS - Improving Resilience to Denial-of-Service Attacks",
              "refsource": "CISCO",
              "tags": [],
              "url": "http://www.cisco.com/warp/public/707/CBOS-DoS.shtml"
            },
            {
              "name": "4814",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/4814"
            },
            {
              "name": "4815",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/4815"
            },
            {
              "name": "cisco-cbos-tcpip-dos(9153)",
              "refsource": "XF",
              "tags": [],
              "url": "http://www.iss.net/security_center/static/9153.php"
            },
            {
              "name": "cisco-cbos-telnet-cpe-dos(9152)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/9152"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 5.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-07-11T01:29Z",
      "publishedDate": "2002-10-04T04:00Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2002-0886 (GCVE-0-2002-0886)

VAR-200210-0188

FKIE_CVE-2002-0886

GHSA-32P2-76XV-RJ3G

GSD-2002-0886

Tags

Sightings

Nomenclature