Vulnerability CVE-2011-1323


Published: 2011-05-09   Modified: 2012-02-13

Description:
Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC IP38X series routers with firmware 6.x through 10.x, do not properly handle IP header options, which allows remote attackers to cause a denial of service (device reboot) via a crafted option that triggers access to an invalid memory location.

Type:

CWE-20

(Improper Input Validation)

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Yamaha -> Rt250i 
Yamaha -> Rtx1200 
Yamaha -> Rt300i 
Yamaha -> Rtx1500 
Yamaha -> Rt56v 
Yamaha -> Rtx2000 
Yamaha -> Rt57i 
Yamaha -> Rtx3000 
Yamaha -> Rt100i 
Yamaha -> Rt58i 
Yamaha -> Srt100 
Yamaha -> Rt102i 
Yamaha -> Rt60w 
Yamaha -> Rt103i 
Yamaha -> Rt80i 
Yamaha -> Rt105e 
Yamaha -> Rta50i 
Yamaha -> Rt105i 
Yamaha -> Rta52i 
Yamaha -> Rt105p 
Yamaha -> Rta54i 
Yamaha -> Rt107e 
Yamaha -> Rta55i 
Yamaha -> Rt140e 
Yamaha -> Rtv700 
Yamaha -> Rt140f 
Yamaha -> Rtw65b 
Yamaha -> Rt140i 
Yamaha -> Rtw65i 
Yamaha -> Rt140p 
Yamaha -> Rtx1000 
Yamaha -> Rt200i 
Yamaha -> Rtx1100 
NEC -> Ip38x/57i 
NEC -> Ip38x/1000 
NEC -> Ip38x/58i 
NEC -> Ip38x/103 
NEC -> Ip38x/sr100 
NEC -> Ip38x/105 
NEC -> Ip38x/v700 
NEC -> Ip38x/107e 
NEC -> Ip38x/1100 
NEC -> Ip38x/1200 
NEC -> Ip38x/140 
NEC -> Ip38x/1500 
NEC -> Ip38x/200 
NEC -> Ip38x/2000 
NEC -> Ip38x/250i 
NEC -> Ip38x/300 
NEC -> Ip38x/3000 
NEC -> Ip38x/52 
NEC -> Ip38x/55i 

 References:
http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/JVN55714408.html
http://www.nec.co.jp/security-info/secinfo/nv11-004.html
http://jvn.jp/en/jp/JVN55714408/index.html

Copyright 2022, cxsecurity.com

 

Back to Top