Details of VAR-200108-0076

ID

VAR-200108-0076

CVE

CVE-2001-0566

TITLE

Cisco Catalyst 2900XL Switch Service Rejection Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200108-069

DESCRIPTION

Cisco Catalyst 2900XL switch allows a remote attacker to create a denial of service via an empty UDP packet sent to port 161 (SNMP) when SNMP is disabled. Catalyst 2900 XL is prone to a denial-of-service vulnerability. Vulnerabilities exist in Cisco Catalyst 2900XL switches

Trust: 1.44

sources: NVD: CVE-2001-0566 // BID: 88841 // IVD: 7004325c-23ce-11e6-abef-000c29c66e3d // VULHUB: VHN-3380

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.2

sources: IVD: 7004325c-23ce-11e6-abef-000c29c66e3d

AFFECTED PRODUCTS

vendor:	cisco	model:	catalyst 2900	scope:	eq	version:	xl	Trust: 1.6
vendor:	cisco	model:	catalyst xl	scope:	eq	version:	2900	Trust: 0.3
vendor:	catalyst 2900	model:	xl	scope:	-	version:	-	Trust: 0.2

sources: IVD: 7004325c-23ce-11e6-abef-000c29c66e3d // BID: 88841 // CNNVD: CNNVD-200108-069 // NVD: CVE-2001-0566

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2001-0566
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200108-069
value:	MEDIUM
Trust: 0.6
IVD:	7004325c-23ce-11e6-abef-000c29c66e3d
value:	MEDIUM
Trust: 0.2
VULHUB:	VHN-3380
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2001-0566
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
IVD:	7004325c-23ce-11e6-abef-000c29c66e3d
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-3380
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: IVD: 7004325c-23ce-11e6-abef-000c29c66e3d // VULHUB: VHN-3380 // CNNVD: CNNVD-200108-069 // NVD: CVE-2001-0566

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.1

sources: VULHUB: VHN-3380 // NVD: CVE-2001-0566

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200108-069

TYPE

Input validation

Trust: 0.8

sources: IVD: 7004325c-23ce-11e6-abef-000c29c66e3d // CNNVD: CNNVD-200108-069

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-3380

EXTERNAL IDS

db:	NVD	id:	CVE-2001-0566	Trust: 2.2
db:	CNNVD	id:	CNNVD-200108-069	Trust: 0.9
db:	XF	id:	6515	Trust: 0.9
db:	BUGTRAQ	id:	20010503 CISCO CATALYST 2900XL CRASHES WITH EMPTY UDP PACKET WHEN SNMP IS DISABLED.	Trust: 0.6
db:	BID	id:	88841	Trust: 0.4
db:	IVD	id:	7004325C-23CE-11E6-ABEF-000C29C66E3D	Trust: 0.2
db:	EXPLOIT-DB	id:	20824	Trust: 0.1
db:	SEEBUG	id:	SSVID-74681	Trust: 0.1
db:	VULHUB	id:	VHN-3380	Trust: 0.1

sources: IVD: 7004325c-23ce-11e6-abef-000c29c66e3d // VULHUB: VHN-3380 // BID: 88841 // CNNVD: CNNVD-200108-069 // NVD: CVE-2001-0566

REFERENCES

url:	http://archives.neohapsis.com/archives/bugtraq/2001-05/0040.html	Trust: 2.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/6515	Trust: 1.1
url:	http://xforce.iss.net/static/6515.php	Trust: 0.9

sources: VULHUB: VHN-3380 // BID: 88841 // CNNVD: CNNVD-200108-069 // NVD: CVE-2001-0566

CREDITS

Unknown

Trust: 0.3

sources: BID: 88841

SOURCES

db:	IVD	id:	7004325c-23ce-11e6-abef-000c29c66e3d
db:	VULHUB	id:	VHN-3380
db:	BID	id:	88841
db:	CNNVD	id:	CNNVD-200108-069
db:	NVD	id:	CVE-2001-0566

LAST UPDATE DATE

2024-08-14T13:51:33.502000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-3380	date:	2017-12-19T00:00:00
db:	BID	id:	88841	date:	2001-08-14T00:00:00
db:	CNNVD	id:	CNNVD-200108-069	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2001-0566	date:	2017-12-19T02:29:22.330

SOURCES RELEASE DATE

db:	IVD	id:	7004325c-23ce-11e6-abef-000c29c66e3d	date:	2001-08-14T00:00:00
db:	VULHUB	id:	VHN-3380	date:	2001-08-14T00:00:00
db:	BID	id:	88841	date:	2001-08-14T00:00:00
db:	CNNVD	id:	CNNVD-200108-069	date:	2001-08-14T00:00:00
db:	NVD	id:	CVE-2001-0566	date:	2001-08-14T04:00:00