CVE-2005-4275

Published Dec 16, 2005

Last updated 16 years ago

Overview

Description: Scientific Atlanta DPX2100 Cable Modem allows remote attackers to cause a denial of service (device crash) via an IP packet with the same source and destination IPs and ports, and with the SYN flag set (aka LanD), as demonstrated using hping2. NOTE: the provenance of this issue is unknown; the details are obtained solely from third party information.
Source: cve@mitre.org
NVD status: Analyzed

Hype score: Not currently trending

Risk scores

CVSS 2.0

Type: Primary
Base score: 7.8
Impact score: 6.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-Other

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:scientific_atlanta:dpx2100_cable_modem:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1B63848-ABCC-43C4-903B-01426ECB36F7"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

References