Details of VAR-200210-0222

ID

VAR-200210-0222

CVE

CVE-2002-1068

TITLE

D-Link Print Server Long Denial of Service POST Request Remote Denial of Service Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2002-3202

DESCRIPTION

The web server for D-Link DP-300 print server allows remote attackers to cause a denial of service (hang) via a large HTTP POST request. The DP-303 print server is a hardware device developed by D-LINK and designed to connect to printable shares via Ethernet. It has a built-in WEB interface for management. The DP-303 print server's WEB interface lacks the correct check when processing extra long POST requests. Remote attackers can use this vulnerability to conduct remote denial of service attacks

Trust: 1.8

sources: NVD: CVE-2002-1068 // CNVD: CNVD-2002-3202 // BID: 5330 // VULHUB: VHN-5457

IOT TAXONOMY

category:

['IoT']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2002-3202

AFFECTED PRODUCTS

vendor:	d link	model:	dp-303	scope:	eq	version:	*	Trust: 1.0
vendor:	d link	model:	dp-303	scope:	-	version:	-	Trust: 0.9
vendor:	none	model:	-	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2002-3202 // BID: 5330 // CNNVD: CNNVD-200210-181 // NVD: CVE-2002-1068

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-1068
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200210-181
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-5457
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2002-1068
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-5457
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-5457 // CNNVD: CNNVD-200210-181 // NVD: CVE-2002-1068

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-1068

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200210-181

TYPE

Boundary Condition Error

Trust: 0.9

sources: BID: 5330 // CNNVD: CNNVD-200210-181

EXTERNAL IDS

db:	NVD	id:	CVE-2002-1068	Trust: 2.6
db:	BID	id:	5330	Trust: 2.0
db:	CNNVD	id:	CNNVD-200210-181	Trust: 0.7
db:	CNVD	id:	CNVD-2002-3202	Trust: 0.6
db:	XF	id:	9703	Trust: 0.6
db:	VULN-DEV	id:	20020727 PHENOELIT ADVISORY #0815 ++-+ DP_300 (DLINK)	Trust: 0.6
db:	BUGTRAQ	id:	20020727 PHENOELIT ADVISORY #0815 ++-+ DP_300 (DLINK)	Trust: 0.6
db:	VULHUB	id:	VHN-5457	Trust: 0.1

sources: CNVD: CNVD-2002-3202 // VULHUB: VHN-5457 // BID: 5330 // CNNVD: CNNVD-200210-181 // NVD: CVE-2002-1068

REFERENCES

url:	http://www.securityfocus.com/bid/5330	Trust: 1.7
url:	http://archives.neohapsis.com/archives/bugtraq/2002-07/0341.html	Trust: 1.7
url:	http://www.iss.net/security_center/static/9703.php	Trust: 1.7
url:	http://marc.info/?l=vuln-dev&m=102779425117680&w=2	Trust: 1.0
url:	http://marc.theaimsgroup.com/?l=vuln-dev&m=102779425117680&w=2	Trust: 0.6
url:	http://www.phenoelit.de/stuff/dp-300.txt	Trust: 0.3
url:	http://marc.info/?l=vuln-dev&m=102779425117680&w=2	Trust: 0.1

sources: VULHUB: VHN-5457 // BID: 5330 // CNNVD: CNNVD-200210-181 // NVD: CVE-2002-1068

CREDITS

kim0 kim0@phenoelit.de

Trust: 0.6

sources: CNNVD: CNNVD-200210-181

SOURCES

db:	CNVD	id:	CNVD-2002-3202
db:	VULHUB	id:	VHN-5457
db:	BID	id:	5330
db:	CNNVD	id:	CNNVD-200210-181
db:	NVD	id:	CVE-2002-1068

LAST UPDATE DATE

2024-08-14T14:48:14.933000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2002-3202	date:	2002-07-27T00:00:00
db:	VULHUB	id:	VHN-5457	date:	2016-10-18T00:00:00
db:	BID	id:	5330	date:	2009-07-11T14:56:00
db:	CNNVD	id:	CNNVD-200210-181	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2002-1068	date:	2016-10-18T02:23:35.040

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2002-3202	date:	2002-07-27T00:00:00
db:	VULHUB	id:	VHN-5457	date:	2002-10-04T00:00:00
db:	BID	id:	5330	date:	2002-07-27T00:00:00
db:	CNNVD	id:	CNNVD-200210-181	date:	2002-07-27T00:00:00
db:	NVD	id:	CVE-2002-1068	date:	2002-10-04T04:00:00