Vulnerability CVE-2014-7256


Published: 2014-12-05

Description:
The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers SEIL/x86 Fuji 1.00 through 3.22; SEIL/X1, SEIL/X2, and SEIL/B1 1.00 through 4.62; SEIL/Turbo 1.82 through 2.18; and SEIL/neu 2FE Plus 1.82 through 2.18 allow remote attackers to cause a denial of service (restart) via crafted (a) GRE or (b) MPPE packets.

CVSS2 => (AV:N/AC:L/Au:N/C:N/I:N/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
7.8/10
6.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Complete
Affected software
Internet initiative japan -> Seil b1 firmware 
Internet initiative japan -> Seil plus firmware 
Internet initiative japan -> Seil turbo firmware 
Internet initiative japan -> Seil x1 firmware 
Internet initiative japan -> Seil x2 firmware 
Internet initiative japan -> Seil x86 fuji firmware 
IIJ -> Seil plus 
IIJ -> Seil turbo 
IIJ -> Seil b1 firmware 
IIJ -> Seil plus firmware 
IIJ -> Seil turbo firmware 
IIJ -> Seil x1 firmware 
IIJ -> Seil x2 firmware 
IIJ -> Seil x86 fuji firmware 

 References:
http://www.seil.jp/support/security/a01511.html
http://jvndb.jvn.jp/ja/contents/2014/JVNDB-2014-000136.html
http://jvn.jp/en/jp/JVN04895240/index.html

Copyright 2024, cxsecurity.com

 

Back to Top