Sign-up

ID

VAR-200011-0055


CVE

CVE-2000-0839


TITLE

WinCOM LPD Denial of service vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200011-067

DESCRIPTION

WinCOM LPD 1.00.90 allows remote attackers to cause a denial of service via a large number of LPD options to the LPD port (515). If a user sends continuous LPD requests to the serivce on default port 515, the program will consume all available CPU usage. A restart of the service is required in order to gain normal functionality. WinCOM LPD 1.00.90 is vulnerable

Trust: 1.26

sources: NVD: CVE-2000-0839 // BID: 1701 // VULHUB: VHN-2409

AFFECTED PRODUCTS

vendor:ipswitchmodel:wincom lpdscope:eqversion:1.00.90

Trust: 1.9

sources: BID: 1701 // CNNVD: CNNVD-200011-067 // NVD: CVE-2000-0839

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2000-0839
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200011-067
value: MEDIUM

Trust: 0.6

VULHUB: VHN-2409
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2000-0839
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-2409
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-2409 // CNNVD: CNNVD-200011-067 // NVD: CVE-2000-0839

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-0839

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200011-067

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200011-067

EXTERNAL IDS

db:BIDid:1701

Trust: 2.0

db:NVDid:CVE-2000-0839

Trust: 1.7

db:CNNVDid:CNNVD-200011-067

Trust: 0.7

db:XFid:5258

Trust: 0.6

db:BUGTRAQid:20000919 VIGILANTE-2000013: WINCOM LPD DOS

Trust: 0.6

db:VULHUBid:VHN-2409

Trust: 0.1

sources: VULHUB: VHN-2409 // BID: 1701 // CNNVD: CNNVD-200011-067 // NVD: CVE-2000-0839

REFERENCES

url:http://www.securityfocus.com/bid/1701

Trust: 1.7

url:http://archives.neohapsis.com/archives/bugtraq/2000-09/0212.html

Trust: 1.7

url:https://exchange.xforce.ibmcloud.com/vulnerabilities/5258

Trust: 1.1

url:http://xforce.iss.net/static/5258.php

Trust: 0.6

url:http://www.ipswitch.com/cgi/download_eval.pl?product=main

Trust: 0.3

sources: VULHUB: VHN-2409 // BID: 1701 // CNNVD: CNNVD-200011-067 // NVD: CVE-2000-0839

CREDITS

Discovered by and published in a VIGILANTe <isis@vigilante.com> security bulletin VIGILANTE-2000013 on Sep 19, 2000.

Trust: 0.3

sources: BID: 1701

SOURCES

db:VULHUBid:VHN-2409
db:BIDid:1701
db:CNNVDid:CNNVD-200011-067
db:NVDid:CVE-2000-0839

LAST UPDATE DATE

2024-08-14T15:31:21.105000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-2409date:2017-10-10T00:00:00
db:BIDid:1701date:2000-09-19T00:00:00
db:CNNVDid:CNNVD-200011-067date:2005-05-02T00:00:00
db:NVDid:CVE-2000-0839date:2017-10-10T01:29:19.593

SOURCES RELEASE DATE

db:VULHUBid:VHN-2409date:2000-11-14T00:00:00
db:BIDid:1701date:2000-09-19T00:00:00
db:CNNVDid:CNNVD-200011-067date:2000-11-14T00:00:00
db:NVDid:CVE-2000-0839date:2000-11-14T05:00:00