Lucene search

MitreCVE-2008-1267

HistoryMar 10, 2008 - 5:44 p.m.

CVE-2008-1267

2008-03-1017:44:00

CWE-189

mitre

web.nvd.nist.gov

siemens

speedstream 6520

router

denial of service

http request

security vulnerability

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.014

Percentile

86.7%

JSON

The Siemens SpeedStream 6520 router allows remote attackers to cause a denial of service (web interface crash) via an HTTP request to basehelp_English.htm with a large integer in the Content-Length field.

Affected configurations

Nvd

Node

siemensspeedstream_6520

VendorProductVersionCPE
siemensspeedstream_6520*cpe:2.3:h:siemens:speedstream_6520:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
siemens	speedstream_6520	*	cpe:2.3:h:siemens:speedstream_6520::::::::

References

secunia.com/advisories/29325

www.gnucitizen.org/projects/router-hacking-challenge/

www.securityfocus.com/archive/1/489009/100/0/threaded

www.securityfocus.com/bid/28490

exchange.xforce.ibmcloud.com/vulnerabilities/41123

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

AI Score

6.6

Confidence

High

EPSS

0.014

Percentile

86.7%

JSON

Related for CVE-2008-1267