CVE-2013-4709

Published Sep 20, 2013

Last updated 10 years ago

CVSS info 6.8

Overview

Description: Buffer overflow in the PPP Access Concentrator (PPPAC) on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.32, SEIL/Turbo with firmware before 2.16, and SEIL/neu 2FE Plus with firmware before 2.16 allows remote attackers to execute arbitrary code via a crafted L2TP message.
Source: vultures@jpcert.or.jp
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.8
Impact score: 6.4
Exploitability score: 8.6
Vector string: AV:N/AC:M/Au:N/C:P/I:P/A:P

Weaknesses

nvd@nist.gov: CWE-119

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil_x2_firmware:1.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "63D5F850-2020-4951-9D8A-1B50E4F8541C"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil_x2_firmware:4.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "15FD9501-0A71-4060-898B-5D2CC101DE1E"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/x2:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "BF54D2DC-48BF-4E7D-BC33-1010B8DBF9E2"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "12D33318-9872-4757-9B6D-844A8FD34360"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fturbo_firmware:2.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6F463AD3-69F3-48EF-98E6-7F3BF06517A8"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/turbo:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DC88F5F6-CB51-4676-91D6-69668229E675"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.05:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CC5F0F67-6961-478C-9895-7EFC2FD7CD2D"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fneu_2fe_plus_firmware:2.15:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E159CF1-554D-4737-9506-59BFF0428C33"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/neu_2fe_plus:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CFB4A421-197B-4654-B362-AEDA3ADADC33"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:1.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "745A1DDE-27CA-4E82-9D7A-E6A11404E02E"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fb1_firmware:4.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7FE74E12-BDED-4459-89F9-18B0D621BF0F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/b1:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4BE3BBD4-FB2E-4543-9149-0452B26FAC31"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:1.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "86111C25-1F23-43A0-A2C9-DADE78F16A0B"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fx86_firmware:2.81:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B1C5DA19-0661-4735-AE91-E65EB59850EC"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/x86:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "477E1688-0CA2-4BD0-A29C-3239B760FA3C"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  },
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:1.00:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9F2F6546-4443-48EE-B29E-B2999A22E906"
          },
          {
            "criteria": "cpe:2.3:o:iij:seil\\%2fx1_firmware:4.31:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11EAE136-B926-4FFE-B799-C13356F1848F"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:iij:seil\\/x1:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A63E557-3BA6-4E0E-8597-BAA112B21DEF"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References