ID

VAR-200101-0117


CVE

CVE-2001-0163


TITLE

Cisco AP340 Base station vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200101-004

DESCRIPTION

Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections. Aironet Ap340 is prone to a local security vulnerability

Trust: 1.26

sources: NVD: CVE-2001-0163 // BID: 88420 // VULHUB: VHN-2985

AFFECTED PRODUCTS

vendor:ciscomodel:aironet ap340scope:eqversion:*

Trust: 1.0

vendor:ciscomodel:aironet ap340scope: - version: -

Trust: 0.6

sources: CNNVD: CNNVD-200101-004 // NVD: CVE-2001-0163

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2001-0163
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200101-004
value: MEDIUM

Trust: 0.6

VULHUB: VHN-2985
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2001-0163
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-2985
severity: MEDIUM
baseScore: 4.6
vectorString: AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-2985 // CNNVD: CNNVD-200101-004 // NVD: CVE-2001-0163

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-0163

THREAT TYPE

local

Trust: 0.9

sources: BID: 88420 // CNNVD: CNNVD-200101-004

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200101-004

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-2985

EXTERNAL IDS

db:NVDid:CVE-2001-0163

Trust: 2.0

db:CNNVDid:CNNVD-200101-004

Trust: 0.7

db:BIDid:88420

Trust: 0.4

db:EXPLOIT-DBid:19522

Trust: 0.1

db:VULHUBid:VHN-2985

Trust: 0.1

sources: VULHUB: VHN-2985 // BID: 88420 // CNNVD: CNNVD-200101-004 // NVD: CVE-2001-0163

REFERENCES

url:http://www.cs.jhu.edu/~seny/pubs/wince802.pdf

Trust: 2.0

url:http://www.cisco.com/cisco/web/solutions/small_business/products/wireless/aironet_series_access_points/index.html

Trust: 0.3

sources: VULHUB: VHN-2985 // BID: 88420 // CNNVD: CNNVD-200101-004 // NVD: CVE-2001-0163

CREDITS

Unknown

Trust: 0.3

sources: BID: 88420

SOURCES

db:VULHUBid:VHN-2985
db:BIDid:88420
db:CNNVDid:CNNVD-200101-004
db:NVDid:CVE-2001-0163

LAST UPDATE DATE

2024-08-14T12:24:45.121000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-2985date:2008-09-05T00:00:00
db:BIDid:88420date:2001-01-01T00:00:00
db:CNNVDid:CNNVD-200101-004date:2005-10-20T00:00:00
db:NVDid:CVE-2001-0163date:2008-09-05T20:23:25.727

SOURCES RELEASE DATE

db:VULHUBid:VHN-2985date:2001-01-01T00:00:00
db:BIDid:88420date:2001-01-01T00:00:00
db:CNNVDid:CNNVD-200101-004date:2001-01-01T00:00:00
db:NVDid:CVE-2001-0163date:2001-01-01T05:00:00