Lucene search
HistoryAug 06, 2004 - 4:00 a.m.
CVE-2004-0661
cve-2004-0661
d-link airplus
firmware
denial of service
nvd
dhcp
remote attackers
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.1 High
AI Score
Confidence
High
0.015 Low
EPSS
Percentile
87.2%
Integer signedness error in D-Link AirPlus DI-614+ running firmware 2.30 and earlier allows remote attackers to cause a denial of service (IP lease depletion) via a DHCP request with the LEASETIME option set to -1, which makes the DHCP lease valid for thirteen or more years.
Affected configurations
Node
d-linkdi-604
ORd-linkdi-614\+Match2.30
ORd-linkdi-624Match1.28
| CPE | Name | Operator | Version |
|---|---|---|---|
| d-link:di-604 | d-link di-604 | eq | * |
| d-link:di-614\+ | d-link di-614+ | eq | 2.30 |
| d-link:di-624 | d-link di-624 | eq | 1.28 |
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
7.1 High
AI Score
Confidence
High
0.015 Low
EPSS
Percentile
87.2%
Related for CVE-2004-0661