Vulnerability CVE-2013-4840


Published: 2014-07-28   Modified: 2014-07-29

Description:
Unspecified vulnerability in HP and H3C VPN Firewall Module products SECPATH1000FE before 5.20.R3177 and SECBLADEFW before 5.20.R3177 allows remote attackers to cause a denial of service via unknown vectors.

Type:

CWE-noinfo

Vendor: HP
Product: S1000-e vpn firewall appliance 
Version: jd272a;
Product: 5820 vpn firewall module 
Version: jd255a;
Product: 8800 firewall processing module 
Version: jd251a;
Product: 6600 firewall processing rtr module 
Version: jd250a;
Product: 10500/7500 advanced vpn firewall module 
Version: jd249a;
Product: 9500 vpn firewall module 
Version: jd245a;
Product: 12500 vpn firewall module 
Version: jc635a;
Product: Secbladefw 
Version: 5.20;
Product: Secpath1000fe 
Version: 5.20;
Vendor: H3C
Product: Secbladefw 
Version: 5.20;
Product: Secpath1000fe 
Version: 5.20;
Product: F1000-e vpn firewall 
Version: 0235a26g;
Product: S5820 secblade vpn firewall module 
Version: 0231a94j;
Product: Sr88 firewall processing module 
Version: 0231a88l;
Product: Sr66 gigabit firewall module 
Version: 0231a88a;
Product: S7500e secblade vpn firewall module 
Version: 0231a832;
Product: S9500e secblade vpn firewall module 
Version: 0231a0av;

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete

 References:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03993467
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03993467

Copyright 2017, cxsecurity.com

 

Back to Top