cvelistv5 - cve-2006-1670

cve-2006-1670

Vulnerability from cvelistv5

Published

2006-04-07 10:00

Modified

2024-08-07 17:19

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/19553
cve@mitre.org	http://securitytracker.com/id?1015872
cve@mitre.org	http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://www.osvdb.org/24434
cve@mitre.org	http://www.securityfocus.com/bid/17384	Exploit, Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1256
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/25643
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19553
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015872
af854a3a-2127-422b-91ae-364da2661108	http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/24434
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/17384	Exploit, Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1256
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/25643

Impacted products

Vendor

Product

Version

▼

n/a

Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T17:19:49.448Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "24434",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/24434"
          },
          {
            "name": "1015872",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1015872"
          },
          {
            "name": "ADV-2006-1256",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/1256"
          },
          {
            "name": "19553",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19553"
          },
          {
            "name": "17384",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/17384"
          },
          {
            "name": "20060405 Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
          },
          {
            "name": "cisco-ons-iplan-ack-dos(25643)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-04-05T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-19T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "24434",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/24434"
        },
        {
          "name": "1015872",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1015872"
        },
        {
          "name": "ADV-2006-1256",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/1256"
        },
        {
          "name": "19553",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19553"
        },
        {
          "name": "17384",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/17384"
        },
        {
          "name": "20060405 Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
        },
        {
          "name": "cisco-ons-iplan-ack-dos(25643)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-1670",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "24434",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/24434"
            },
            {
              "name": "1015872",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1015872"
            },
            {
              "name": "ADV-2006-1256",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/1256"
            },
            {
              "name": "19553",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19553"
            },
            {
              "name": "17384",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/17384"
            },
            {
              "name": "20060405 Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities",
              "refsource": "CISCO",
              "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
            },
            {
              "name": "cisco-ons-iplan-ack-dos(25643)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-1670",
    "datePublished": "2006-04-07T10:00:00",
    "dateReserved": "2006-04-07T00:00:00",
    "dateUpdated": "2024-08-07T17:19:49.448Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D1888FF-6126-4F40-A7EA-1ED5123FA729\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"15B6D45F-25A7-4055-9D9C-42DEACBFFE17\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\\\(0\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31461FAA-2F90-47B0-BDA3-D81A8186960C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2EF8D104-CABD-4036-A4AF-68B80D83AE34\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:1.3\\\\(0\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5331AAD2-7E21-4407-9DF7-9D2A8058FAE0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8B0A4FA3-45F4-47B7-BA5B-6AEC8DB14C9E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6509622E-7E8D-4238-92F2-7DB88A3DB4DA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80460930-7D3D-4315-8D00-FFDCDBA69477\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0993B9A9-599B-4662-AEC2-EC771BCE8200\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"04472ED2-EB97-47E1-938E-D69C363E81C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10988AA9-A807-4E70-8197-6F9EFC13AE86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8951276-CDEF-4F54-93DF-B96DB10E6530\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D886A75-5A73-4B1C-8B2A-45D589267B37\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(0\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D5A594C2-98BB-4AC5-9CC5-89FE97D63323\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B35325A-98F6-41DF-ADD8-91ED992A3ED3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(2\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F0B06C5B-73C2-47F1-9ED6-B59F9C1C5AF1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(3\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9758019-F6EA-4552-B070-5A9EBE73BB86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.1.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"44DDAC96-7467-4FFF-B337-C0475B7214B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\\\(0\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4DEC7814-61D4-420A-AB81-6720F3C2D6B9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\\\(1\\\\):*:*:*:*:*:*:*\", \"matchCriteriaId\": \"413133A5-F600-4B2B-82E1-3EAC10B7E6F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:ons_15310-cl_series:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"32B96C9A-FA1D-4E74-95C2-4355ED257FB5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"811149AD-89DC-4D93-A598-F6318C9EA64B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0E3A7E4-39CD-44B9-B72D-0C9B810A2158\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B98B943-24D6-4B37-A44F-0E3985BBB54E\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.\"}]",
      "id": "CVE-2006-1670",
      "lastModified": "2024-11-21T00:09:26.830",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 7.8, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2006-04-07T10:04:00.000",
      "references": "[{\"url\": \"http://secunia.com/advisories/19553\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1015872\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.osvdb.org/24434\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/17384\", \"source\": \"cve@mitre.org\", \"tags\": [\"Exploit\", \"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1256\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25643\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/19553\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1015872\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\", \"Vendor Advisory\"]}, {\"url\": \"http://www.osvdb.org/24434\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/17384\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Patch\"]}, {\"url\": \"http://www.vupen.com/english/advisories/2006/1256\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/25643\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-1670\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-04-07T10:04:00.000\",\"lastModified\":\"2024-11-21T00:09:26.830\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D1888FF-6126-4F40-A7EA-1ED5123FA729\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"15B6D45F-25A7-4055-9D9C-42DEACBFFE17\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\\\(0\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31461FAA-2F90-47B0-BDA3-D81A8186960C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2EF8D104-CABD-4036-A4AF-68B80D83AE34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:1.3\\\\(0\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5331AAD2-7E21-4407-9DF7-9D2A8058FAE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B0A4FA3-45F4-47B7-BA5B-6AEC8DB14C9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6509622E-7E8D-4238-92F2-7DB88A3DB4DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80460930-7D3D-4315-8D00-FFDCDBA69477\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0993B9A9-599B-4662-AEC2-EC771BCE8200\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04472ED2-EB97-47E1-938E-D69C363E81C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10988AA9-A807-4E70-8197-6F9EFC13AE86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8951276-CDEF-4F54-93DF-B96DB10E6530\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D886A75-5A73-4B1C-8B2A-45D589267B37\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(0\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D5A594C2-98BB-4AC5-9CC5-89FE97D63323\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B35325A-98F6-41DF-ADD8-91ED992A3ED3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(2\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F0B06C5B-73C2-47F1-9ED6-B59F9C1C5AF1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\\\(3\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9758019-F6EA-4552-B070-5A9EBE73BB86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.1.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"44DDAC96-7467-4FFF-B337-C0475B7214B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\\\(0\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4DEC7814-61D4-420A-AB81-6720F3C2D6B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\\\(1\\\\):*:*:*:*:*:*:*\",\"matchCriteriaId\":\"413133A5-F600-4B2B-82E1-3EAC10B7E6F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:ons_15310-cl_series:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32B96C9A-FA1D-4E74-95C2-4355ED257FB5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"811149AD-89DC-4D93-A598-F6318C9EA64B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0E3A7E4-39CD-44B9-B72D-0C9B810A2158\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B98B943-24D6-4B37-A44F-0E3985BBB54E\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/19553\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1015872\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.osvdb.org/24434\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/17384\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/1256\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25643\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/19553\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1015872\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.osvdb.org/24434\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/17384\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Patch\"]},{\"url\":\"http://www.vupen.com/english/advisories/2006/1256\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/25643\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}

Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910. Cisco Optical Networking System (ONS) The denial of service (DoS) There is a vulnerability that can be exploited.Denial of service by third party (DoS) May be in a state. The response, which is also known as bug ID CSCei45910. Cisco Optical Networking System and Transport Controller are prone to multiple vulnerabilities. Cisco Optical Networking System 15000 series are affected by multiple denial-of-service vulnerabilities. Cisco Transport Controller is prone to an arbitrary code-execution vulnerability.

1) Multiple services are vulnerable to ACK DoS attacks where an invalid response is sent instead of the final ACK packet during the 3-way handshake. This can be exploited to cause the control cards to exhaust memory resources, not respond to further connections, or reset by establishing multiple of these connections.

Successful exploitation requires that IP is configured on the LAN interface (enabled by default).

2) An error within the processing of IP packets can be exploited to reset the control cards by sending a specially crafted IP packet.

Successful exploitation requires that IP is configured on the LAN interface (enabled by default) and secure mode for element management system (EMS)-to-network-element access is enabled (disabled by default).

3) Another error within the processing of IP packets can be exploited to reset the control cards by sending a specially crafted IP packet.

Successful exploitation requires that IP is configured on the LAN interface (enabled by default).

4) An error within the processing of OSPF (Open Shortest Path First) packets can be exploited to reset the control cards by sending a specially crafted OSPF packet.

Successful exploitation requires that the OSPF routing protocol is configured on the LAN interface (disabled by default).

Successful exploitation of the above vulnerabilities (#1 through #4) requires that the Optical node has the Common Control Card connected to a DCN (Data Communication Network) and is enabled for IPv4.

The above vulnerabilities (#1 through #4) affect the following Cisco ONS 15000 series platforms: * Cisco ONS 15310-CL Series * Cisco ONS 15327 Series * Cisco ONS 15454 MSPP * Cisco ONS 15454 MSTP * Cisco ONS 15600 Series

The following Cisco ONS 15000 series platforms are not affected by the vulnerabilities: * Cisco ONS 15100 Series * Cisco ONS 15200 Series * Cisco ONS 15302, ONS 15305, and ONS 15310-MA platforms * Cisco ONS 15500 Series * Cisco ONS 15800 Series

5) A vulnerability exists within the Cisco Transport Controller (CTC) applet launcher, which is downloaded each time a management connection is made to the Optical node. The vulnerability is caused due to the java.policy permissions being to broad by granting all permissions to any software originating from the codeBase or source at http://*/fs/LAUNCHER.jar.

This can be exploited to execute arbitrary code on the CTC workstation if it is used to connect to a malicious web site running Java code from the "/fs/LAUNCHER.jar" location.

The vulnerability affects versions 4.0.x and prior.

SOLUTION: 1-4) Updated versions are available (see patch matrix in vendor advisory).

PROVIDED AND/OR DISCOVERED BY: Reported by vendor.

ORIGINAL ADVISORY: http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200604-0097",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "ons 15454 mspp",
        "scope": null,
        "trust": 1.4,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ons 15454 mstp",
        "scope": null,
        "trust": 1.4,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.0.0"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.3\\(0\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.0"
      },
      {
        "model": "ons 15310-cl series",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "ons 15454 mspp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1\\(0\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.1.0"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1\\(2\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1.4"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.0\\(1\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.1\\(0\\)"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "ons 15454 mstp",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "*"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.0"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.1\\(1\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.0\\(2\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1\\(1\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.1\\(3\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.2"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.3.0"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.6\\(1\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.1"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "4.6\\(0\\)"
      },
      {
        "model": "optical networking systems software",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "3.4.0"
      },
      {
        "model": "ons 15310-cl series",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ons 15327",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "ons 15600",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "controller cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "transport",
        "version": "4.0.x"
      },
      {
        "model": "15310-cl series cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "0"
      },
      {
        "model": "cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "156000"
      },
      {
        "model": "cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "153273.0"
      },
      {
        "model": "cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "153273.1"
      },
      {
        "model": "cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "153273.2"
      },
      {
        "model": "cisco",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "ons",
        "version": "153273.3"
      },
      {
        "model": "ons 15327",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "4.14"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.3\\(0\\)"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.0"
      },
      {
        "model": "ons 15327",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "4.6\\(1\\)"
      },
      {
        "model": "ons 15327",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "4.6\\(0\\)"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.1\\(0\\)"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.1"
      },
      {
        "model": "ons 15600",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "1.1\\(1\\)"
      },
      {
        "model": "transport controller",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.x"
      },
      {
        "model": "ons series",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156000"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156001.3(0)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156001.1(1)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156001.1(0)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156001.1"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "156001.0"
      },
      {
        "model": "ons mstp",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "154540"
      },
      {
        "model": "ons mspp",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "154540"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.14"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.6(1)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.6(0)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.1(3)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.1(2)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.1(1)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.1(0)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.0(2)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.0(1)"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153274.0"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153273.4"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153273.3"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153273.2"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153273.1"
      },
      {
        "model": "ons",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153273.0"
      },
      {
        "model": "ons 15310-cl series",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "transport controller",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.1"
      },
      {
        "model": "ons series",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "158000"
      },
      {
        "model": "ons series",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "155000"
      },
      {
        "model": "ons 15310-ma",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "0"
      },
      {
        "model": "ons",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "153050"
      },
      {
        "model": "ons",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "15302"
      },
      {
        "model": "ons series",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "152000"
      },
      {
        "model": "ons series",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "151000"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "BID",
        "id": "17384"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:ons_15310-cl_series:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.3\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2006-1670",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 7.8,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2006-1670",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2006-2113",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-17778",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2006-1670",
            "trust": 1.8,
            "value": "HIGH"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2006-2113",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200604-096",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-17778",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910. Cisco Optical Networking System (ONS) The denial of service (DoS) There is a vulnerability that can be exploited.Denial of service by third party (DoS) May be in a state. The response, which is also known as bug ID CSCei45910. Cisco Optical Networking System and Transport Controller are prone to multiple vulnerabilities. \nCisco Optical Networking System 15000 series are affected by multiple denial-of-service vulnerabilities. \nCisco Transport Controller is prone to an arbitrary code-execution vulnerability. \n\n1) Multiple services are vulnerable to ACK DoS attacks where an\ninvalid response is sent instead of the final ACK packet during the\n3-way handshake. This can be exploited to cause the control cards to\nexhaust memory resources, not respond to further connections, or\nreset by establishing multiple of these connections. \n\nSuccessful exploitation requires that IP is configured on the LAN\ninterface (enabled by default). \n\n2) An error within the processing of IP packets can be exploited to\nreset the control cards by sending a specially crafted IP packet. \n\nSuccessful exploitation requires that IP is configured on the LAN\ninterface (enabled by default) and secure mode for element management\nsystem (EMS)-to-network-element access is enabled (disabled by\ndefault). \n\n3) Another error within the processing of IP packets can be exploited\nto reset the control cards by sending a specially crafted IP packet. \n\nSuccessful exploitation requires that IP is configured on the LAN\ninterface (enabled by default). \n\n4) An error within the processing of OSPF (Open Shortest Path First)\npackets can be exploited to reset the control cards by sending a\nspecially crafted OSPF packet. \n\nSuccessful exploitation requires that the OSPF routing protocol is\nconfigured on the LAN interface (disabled by default). \n\nSuccessful exploitation of the above vulnerabilities (#1 through #4)\nrequires that the Optical node has the Common Control Card connected\nto a DCN (Data Communication Network) and is enabled for IPv4. \n\nThe above vulnerabilities (#1 through #4) affect the following Cisco\nONS 15000 series platforms:\n* Cisco ONS 15310-CL Series\n* Cisco ONS 15327 Series\n* Cisco ONS 15454 MSPP\n* Cisco ONS 15454 MSTP\n* Cisco ONS 15600 Series\n\nThe following Cisco ONS 15000 series platforms are not affected by\nthe vulnerabilities:\n* Cisco ONS 15100 Series\n* Cisco ONS 15200 Series\n* Cisco ONS 15302, ONS 15305, and ONS 15310-MA platforms\n* Cisco ONS 15500 Series\n* Cisco ONS 15800 Series\n\n5) A vulnerability exists within the Cisco Transport Controller (CTC)\napplet launcher, which is downloaded each time a management connection\nis made to the Optical node. The vulnerability is caused due to the\njava.policy permissions being to broad by granting all permissions to\nany software originating from the codeBase or source at\nhttp://*/fs/LAUNCHER.jar. \n\nThis can be exploited to execute arbitrary code on the CTC\nworkstation if it is used to connect to a malicious web site running\nJava code from the \"/fs/LAUNCHER.jar\" location. \n\nThe vulnerability affects versions 4.0.x and prior. \n\nSOLUTION:\n1-4) Updated versions are available (see patch matrix in vendor\nadvisory). \n\nPROVIDED AND/OR DISCOVERED BY:\nReported by vendor. \n\nORIGINAL ADVISORY:\nhttp://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "BID",
        "id": "17384"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "db": "PACKETSTORM",
        "id": "45206"
      }
    ],
    "trust": 2.61
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2006-1670",
        "trust": 3.1
      },
      {
        "db": "BID",
        "id": "17384",
        "trust": 2.6
      },
      {
        "db": "SECUNIA",
        "id": "19553",
        "trust": 1.8
      },
      {
        "db": "SECTRACK",
        "id": "1015872",
        "trust": 1.7
      },
      {
        "db": "VUPEN",
        "id": "ADV-2006-1256",
        "trust": 1.7
      },
      {
        "db": "OSVDB",
        "id": "24434",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113",
        "trust": 0.6
      },
      {
        "db": "CISCO",
        "id": "20060405 CISCO OPTICAL NETWORKING SYSTEM 15000 SERIES AND CISCO TRANSPORT CONTROLLER VULNERABILITIES",
        "trust": 0.6
      },
      {
        "db": "XF",
        "id": "25643",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "45206",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "db": "BID",
        "id": "17384"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "PACKETSTORM",
        "id": "45206"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "id": "VAR-200604-0097",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      }
    ],
    "trust": 1.7
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      }
    ]
  },
  "last_update_date": "2023-12-18T12:24:05.351000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "17384",
        "trust": 0.8,
        "url": "http://www.securityfocus.com/bid/17384"
      },
      {
        "title": "cisco-sa-20060405-ons.shtml",
        "trust": 0.8,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-Other",
        "trust": 1.0
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.3,
        "url": "http://www.securityfocus.com/bid/17384"
      },
      {
        "trust": 2.1,
        "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
      },
      {
        "trust": 1.7,
        "url": "http://www.osvdb.org/24434"
      },
      {
        "trust": 1.7,
        "url": "http://securitytracker.com/id?1015872"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/19553"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2006/1256"
      },
      {
        "trust": 1.1,
        "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2006-1670"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2006-1670"
      },
      {
        "trust": 0.6,
        "url": "http://xforce.iss.net/xforce/xfdb/25643"
      },
      {
        "trust": 0.6,
        "url": "http://www.frsirt.com/english/advisories/2006/1256"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/19553/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/9196/"
      },
      {
        "trust": 0.1,
        "url": "http://*/fs/launcher.jar."
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/684/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "db": "BID",
        "id": "17384"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "PACKETSTORM",
        "id": "45206"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "db": "BID",
        "id": "17384"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "db": "PACKETSTORM",
        "id": "45206"
      },
      {
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2006-04-07T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "date": "2006-04-07T00:00:00",
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "date": "2006-04-05T00:00:00",
        "db": "BID",
        "id": "17384"
      },
      {
        "date": "2014-03-11T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "date": "2006-04-06T18:10:32",
        "db": "PACKETSTORM",
        "id": "45206"
      },
      {
        "date": "2006-04-07T10:04:00",
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "date": "2006-04-07T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2006-04-07T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2006-2113"
      },
      {
        "date": "2018-10-30T00:00:00",
        "db": "VULHUB",
        "id": "VHN-17778"
      },
      {
        "date": "2006-04-06T17:23:00",
        "db": "BID",
        "id": "17384"
      },
      {
        "date": "2014-03-11T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      },
      {
        "date": "2018-10-30T16:26:17.060000",
        "db": "NVD",
        "id": "CVE-2006-1670"
      },
      {
        "date": "2006-04-07T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Optical Networking System Denial of service in Japan  (DoS) Vulnerability",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2006-003943"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "lack of information",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200604-096"
      }
    ],
    "trust": 0.6
  }
}

ghsa-f8cr-xgwc-mr3c

Vulnerability from github

Published

2022-05-01 06:51

Modified

2022-05-01 06:51

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-1670"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-04-07T10:04:00Z",
    "severity": "HIGH"
  },
  "details": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.",
  "id": "GHSA-f8cr-xgwc-mr3c",
  "modified": "2022-05-01T06:51:41Z",
  "published": "2022-05-01T06:51:41Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-1670"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/19553"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1015872"
    },
    {
      "type": "WEB",
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/24434"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/17384"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/1256"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

cve-2006-1670

Vulnerability from fkie_nvd

Published

2006-04-07 10:04

Modified

2024-11-21 00:09

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/19553
cve@mitre.org	http://securitytracker.com/id?1015872
cve@mitre.org	http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml	Exploit, Patch, Vendor Advisory
cve@mitre.org	http://www.osvdb.org/24434
cve@mitre.org	http://www.securityfocus.com/bid/17384	Exploit, Patch
cve@mitre.org	http://www.vupen.com/english/advisories/2006/1256
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/25643
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/19553
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1015872
af854a3a-2127-422b-91ae-364da2661108	http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml	Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/24434
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/17384	Exploit, Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/1256
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/25643

Impacted products

Vendor	Product	Version
cisco	optical_networking_systems_software	1.0
cisco	optical_networking_systems_software	1.1
cisco	optical_networking_systems_software	1.1\(0\)
cisco	optical_networking_systems_software	1.1\(1\)
cisco	optical_networking_systems_software	1.3\(0\)
cisco	optical_networking_systems_software	3.0
cisco	optical_networking_systems_software	3.1.0
cisco	optical_networking_systems_software	3.2
cisco	optical_networking_systems_software	3.3.0
cisco	optical_networking_systems_software	3.4.0
cisco	optical_networking_systems_software	4.0\(1\)
cisco	optical_networking_systems_software	4.0\(2\)
cisco	optical_networking_systems_software	4.0.0
cisco	optical_networking_systems_software	4.1\(0\)
cisco	optical_networking_systems_software	4.1\(1\)
cisco	optical_networking_systems_software	4.1\(2\)
cisco	optical_networking_systems_software	4.1\(3\)
cisco	optical_networking_systems_software	4.1.4
cisco	optical_networking_systems_software	4.6\(0\)
cisco	optical_networking_systems_software	4.6\(1\)
cisco	ons_15310-cl_series	*
cisco	ons_15600	*
cisco	ons_15454_mspp	*
cisco	ons_15454_mstp	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D1888FF-6126-4F40-A7EA-1ED5123FA729",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "15B6D45F-25A7-4055-9D9C-42DEACBFFE17",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(0\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "31461FAA-2F90-47B0-BDA3-D81A8186960C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "2EF8D104-CABD-4036-A4AF-68B80D83AE34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:1.3\\(0\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "5331AAD2-7E21-4407-9DF7-9D2A8058FAE0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "8B0A4FA3-45F4-47B7-BA5B-6AEC8DB14C9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6509622E-7E8D-4238-92F2-7DB88A3DB4DA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "80460930-7D3D-4315-8D00-FFDCDBA69477",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "0993B9A9-599B-4662-AEC2-EC771BCE8200",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "04472ED2-EB97-47E1-938E-D69C363E81C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "10988AA9-A807-4E70-8197-6F9EFC13AE86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "C8951276-CDEF-4F54-93DF-B96DB10E6530",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D886A75-5A73-4B1C-8B2A-45D589267B37",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(0\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "D5A594C2-98BB-4AC5-9CC5-89FE97D63323",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "9B35325A-98F6-41DF-ADD8-91ED992A3ED3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(2\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "F0B06C5B-73C2-47F1-9ED6-B59F9C1C5AF1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(3\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "D9758019-F6EA-4552-B070-5A9EBE73BB86",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "44DDAC96-7467-4FFF-B337-C0475B7214B0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(0\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "4DEC7814-61D4-420A-AB81-6720F3C2D6B9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(1\\):*:*:*:*:*:*:*",
              "matchCriteriaId": "413133A5-F600-4B2B-82E1-3EAC10B7E6F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:ons_15310-cl_series:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "32B96C9A-FA1D-4E74-95C2-4355ED257FB5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "811149AD-89DC-4D93-A598-F6318C9EA64B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0E3A7E4-39CD-44B9-B72D-0C9B810A2158",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5B98B943-24D6-4B37-A44F-0E3985BBB54E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910."
    }
  ],
  "id": "CVE-2006-1670",
  "lastModified": "2024-11-21T00:09:26.830",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-04-07T10:04:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/19553"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1015872"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/24434"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/17384"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/1256"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/19553"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1015872"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/24434"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/17384"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/1256"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2006-1670

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2006-1670

Aliases

CVE-2006-1670

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-1670",
    "description": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.",
    "id": "GSD-2006-1670"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-1670"
      ],
      "details": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910.",
      "id": "GSD-2006-1670",
      "modified": "2023-12-13T01:19:55.552422Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-1670",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "24434",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/24434"
          },
          {
            "name": "1015872",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1015872"
          },
          {
            "name": "ADV-2006-1256",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/1256"
          },
          {
            "name": "19553",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/19553"
          },
          {
            "name": "17384",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/17384"
          },
          {
            "name": "20060405 Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities",
            "refsource": "CISCO",
            "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
          },
          {
            "name": "cisco-ons-iplan-ack-dos(25643)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:h:cisco:ons_15310-cl_series:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:h:cisco:ons_15600:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:ons_15454_mspp:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:ons_15454_mstp:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(2\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1\\(3\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:3.4.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.1.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:4.6\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.1\\(1\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:optical_networking_systems_software:1.3\\(0\\):*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-1670"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Control cards for Cisco Optical Networking System (ONS) 15000 series nodes before 20060405 allow remote attackers to cause a denial of service (memory exhaustion and possibly card reset) by sending an invalid response when the final ACK is expected, aka bug ID CSCei45910."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20060405 Cisco Optical Networking System 15000 Series and Cisco Transport Controller Vulnerabilities",
              "refsource": "CISCO",
              "tags": [
                "Exploit",
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.cisco.com/warp/public/707/cisco-sa-20060405-ons.shtml"
            },
            {
              "name": "17384",
              "refsource": "BID",
              "tags": [
                "Exploit",
                "Patch"
              ],
              "url": "http://www.securityfocus.com/bid/17384"
            },
            {
              "name": "1015872",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1015872"
            },
            {
              "name": "19553",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/19553"
            },
            {
              "name": "24434",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/24434"
            },
            {
              "name": "ADV-2006-1256",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/1256"
            },
            {
              "name": "cisco-ons-iplan-ack-dos(25643)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25643"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2018-10-30T16:26Z",
      "publishedDate": "2006-04-07T10:04Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2006-1670

Vulnerability from cvelistv5

var-200604-0097

Vulnerability from variot

ghsa-f8cr-xgwc-mr3c

Vulnerability from github

cve-2006-1670

Vulnerability from fkie_nvd

gsd-2006-1670

Vulnerability from gsd

Tags

Sightings

Nomenclature