Details of VAR-200110-0030

ID

VAR-200110-0030

CVE

CVE-2001-0751

TITLE

Cisco Switch and router TCP Connection fraud hijacking vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200110-115

DESCRIPTION

Cisco switches and routers running CBOS 2.3.8 and earlier use predictable TCP Initial Sequence Numbers (ISN), which allows remote attackers to spoof or hijack TCP connections. CBOS is prone to a remote security vulnerability

Trust: 1.26

sources: NVD: CVE-2001-0751 // BID: 88977 // VULHUB: VHN-3559

AFFECTED PRODUCTS

vendor:	cisco	model:	cbos	scope:	lte	version:	2.3.8	Trust: 1.0
vendor:	cisco	model:	cbos	scope:	eq	version:	2.3.8	Trust: 0.9

sources: BID: 88977 // CNNVD: CNNVD-200110-115 // NVD: CVE-2001-0751

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2001-0751
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200110-115
value:	HIGH
Trust: 0.6
VULHUB:	VHN-3559
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2001-0751
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-3559
severity:	HIGH
baseScore:	7.5
vectorString:	AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-3559 // CNNVD: CNNVD-200110-115 // NVD: CVE-2001-0751

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2001-0751

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200110-115

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200110-115

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-3559

EXTERNAL IDS

db:	NVD	id:	CVE-2001-0751	Trust: 2.0
db:	XF	id:	139	Trust: 0.9
db:	CNNVD	id:	CNNVD-200110-115	Trust: 0.7
db:	CISCO	id:	20010522 MORE MULTIPLE VULNERABILITIES IN CBOS	Trust: 0.6
db:	BID	id:	88977	Trust: 0.4
db:	EXPLOIT-DB	id:	19522	Trust: 0.1
db:	VULHUB	id:	VHN-3559	Trust: 0.1

sources: VULHUB: VHN-3559 // BID: 88977 // CNNVD: CNNVD-200110-115 // NVD: CVE-2001-0751

REFERENCES

url:	http://www.cisco.com/warp/public/707/cbos-multiple2-pub.html	Trust: 3.0
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/139	Trust: 2.1
url:	http://xforce.iss.net/static/139.php	Trust: 0.9

sources: VULHUB: VHN-3559 // BID: 88977 // CNNVD: CNNVD-200110-115 // NVD: CVE-2001-0751

CREDITS

Unknown

Trust: 0.3

sources: BID: 88977

SOURCES

db:	VULHUB	id:	VHN-3559
db:	BID	id:	88977
db:	CNNVD	id:	CNNVD-200110-115
db:	NVD	id:	CVE-2001-0751

LAST UPDATE DATE

2024-11-22T22:08:28.185000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-3559	date:	2017-10-10T00:00:00
db:	BID	id:	88977	date:	2001-10-18T00:00:00
db:	CNNVD	id:	CNNVD-200110-115	date:	2005-05-02T00:00:00
db:	NVD	id:	CVE-2001-0751	date:	2024-11-20T23:36:04.377

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-3559	date:	2001-10-18T00:00:00
db:	BID	id:	88977	date:	2001-10-18T00:00:00
db:	CNNVD	id:	CNNVD-200110-115	date:	2001-10-18T00:00:00
db:	NVD	id:	CVE-2001-0751	date:	2001-10-18T04:00:00