Lucene search

[email protected]NVD:CVE-2013-4708

HistoryOct 01, 2013 - 5:55 p.m.

CVE-2013-4708

2013-10-0117:55:03

CWE-310

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.002

Percentile

60.7%

JSON

The PPP Access Concentrator (PPPAC) in Internet Initiative Japan Inc. SEIL/x86 1.00 through 2.80, SEIL/X1 1.00 through 4.30, SEIL/X2 1.00 through 4.30, SEIL/B1 1.00 through 4.30, SEIL/Turbo 1.80 through 2.15, and SEIL/neu 2FE Plus 1.80 through 2.15 generates predictable random numbers, which allows remote attackers to bypass RADIUS authentication by sniffing RADIUS traffic.

Affected configurations

Nvd

Node

iijseil\%2fx1_firmwareMatch1.00

iijseil\%2fx1_firmwareMatch4.30

AND

iijseil\/x1

Node

iijseil\%2fb1_firmwareMatch1.00

iijseil\%2fb1_firmwareMatch4.30

AND

iijseil\/b1

Node

iijseil\%2fx2_firmwareMatch1.00

iijseil\%2fx2_firmwareMatch4.30

AND

iijseil\/x2

Node

iijseil\%2fx86_firmwareMatch1.00

iijseil\%2fx86_firmwareMatch2.80

AND

iijseil\/x86

Node

iijseil\%2fturbo_firmwareMatch1.80

iijseil\%2fturbo_firmwareMatch2.05

iijseil\%2fturbo_firmwareMatch2.15

AND

iijseil\/turbo

Node

iijseil\%2fneu_2fe_plus_firmwareMatch1.80

iijseil\%2fneu_2fe_plus_firmwareMatch2.05

iijseil\%2fneu_2fe_plus_firmwareMatch2.15

AND

iijseil\/neu_2fe_plus

VendorProductVersionCPE
iijseil\%2fx1_firmware1.00cpe:2.3:o:iij:seil\%2fx1_firmware:1.00:*:*:*:*:*:*:*
iijseil\%2fx1_firmware4.30cpe:2.3:o:iij:seil\%2fx1_firmware:4.30:*:*:*:*:*:*:*
iijseil\/x1*cpe:2.3:h:iij:seil\/x1:*:*:*:*:*:*:*:*
iijseil\%2fb1_firmware1.00cpe:2.3:o:iij:seil\%2fb1_firmware:1.00:*:*:*:*:*:*:*
iijseil\%2fb1_firmware4.30cpe:2.3:o:iij:seil\%2fb1_firmware:4.30:*:*:*:*:*:*:*
iijseil\/b1*cpe:2.3:h:iij:seil\/b1:*:*:*:*:*:*:*:*
iijseil\%2fx2_firmware1.00cpe:2.3:o:iij:seil\%2fx2_firmware:1.00:*:*:*:*:*:*:*
iijseil\%2fx2_firmware4.30cpe:2.3:o:iij:seil\%2fx2_firmware:4.30:*:*:*:*:*:*:*
iijseil\/x2*cpe:2.3:h:iij:seil\/x2:*:*:*:*:*:*:*:*
iijseil\%2fx86_firmware1.00cpe:2.3:o:iij:seil\%2fx86_firmware:1.00:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
iij	seil\%2fx1_firmware	1.00	cpe:2.3:o:iij:seil\%2fx1_firmware:1.00:::::::*
iij	seil\%2fx1_firmware	4.30	cpe:2.3:o:iij:seil\%2fx1_firmware:4.30:::::::*
iij	seil\/x1	*	cpe:2.3:h:iij:seil\/x1::::::::
iij	seil\%2fb1_firmware	1.00	cpe:2.3:o:iij:seil\%2fb1_firmware:1.00:::::::*
iij	seil\%2fb1_firmware	4.30	cpe:2.3:o:iij:seil\%2fb1_firmware:4.30:::::::*
iij	seil\/b1	*	cpe:2.3:h:iij:seil\/b1::::::::
iij	seil\%2fx2_firmware	1.00	cpe:2.3:o:iij:seil\%2fx2_firmware:1.00:::::::*
iij	seil\%2fx2_firmware	4.30	cpe:2.3:o:iij:seil\%2fx2_firmware:4.30:::::::*
iij	seil\/x2	*	cpe:2.3:h:iij:seil\/x2::::::::
iij	seil\%2fx86_firmware	1.00	cpe:2.3:o:iij:seil\%2fx86_firmware:1.00:::::::*

Rows per page:

1-10 of 201

References

jvn.jp/en/jp/JVN40079308/index.html

jvndb.jvn.jp/ja/contents/2013/JVNDB-2013-000091.html

osvdb.org/97619

www.seil.jp/support/security/a01388.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

AI Score

Confidence

Low

EPSS

0.002

Percentile

60.7%

JSON

Related for NVD:CVE-2013-4708

jvn1 cve1 cvelist1 prion1