Sign-up

ID

VAR-200212-0098


CVE

CVE-2002-2149


TITLE

Lucent Access Point IP Service router is very long HTTP Request service denial vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200212-658

DESCRIPTION

Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface. An error has been reported in the embedded HTTP server. It has been reported that sending a HTTP request consisting of approximately 4000 characters of data will cause the device to reboot. This may result in an interruption of service for legitimate users of the device

Trust: 1.26

sources: NVD: CVE-2002-2149 // BID: 5333 // VULHUB: VHN-6532

AFFECTED PRODUCTS

vendor:lucentmodel:access point service router 600scope:eqversion:*

Trust: 1.0

vendor:lucentmodel:access point service router 1500scope:eqversion:*

Trust: 1.0

vendor:lucentmodel:access point service router 300scope:eqversion:*

Trust: 1.0

vendor:lucentmodel:access point service router 1500scope: - version: -

Trust: 0.6

vendor:lucentmodel:access point service router 600scope: - version: -

Trust: 0.6

vendor:lucentmodel:access point service router 300scope: - version: -

Trust: 0.6

vendor:lucentmodel:access point service routerscope:eqversion:600

Trust: 0.3

vendor:lucentmodel:access point service routerscope:eqversion:300

Trust: 0.3

vendor:lucentmodel:access point service routerscope:eqversion:1500

Trust: 0.3

vendor:lucentmodel:ap o/sscope:neversion:4.0

Trust: 0.3

vendor:lucentmodel:ap o/sscope:neversion:3.1

Trust: 0.3

vendor:lucentmodel:ap o/s r3scope:neversion:3.0

Trust: 0.3

vendor:lucentmodel:ap o/s .0r.4.3scope:neversion:2.5

Trust: 0.3

sources: BID: 5333 // CNNVD: CNNVD-200212-658 // NVD: CVE-2002-2149

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2002-2149
value: MEDIUM

Trust: 1.0

CNNVD: CNNVD-200212-658
value: MEDIUM

Trust: 0.6

VULHUB: VHN-6532
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2002-2149
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

VULHUB: VHN-6532
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: VULHUB: VHN-6532 // CNNVD: CNNVD-200212-658 // NVD: CVE-2002-2149

PROBLEMTYPE DATA

problemtype:NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2002-2149

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200212-658

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200212-658

EXPLOIT AVAILABILITY

sources:
            
            
            VULHUB: VHN-6532

EXTERNAL IDS
db:BIDid:5333
Trust: 2.0
db:NVDid:CVE-2002-2149
Trust: 1.7
db:CNNVDid:CNNVD-200212-658
Trust: 0.7
db:XFid:9705
Trust: 0.6
db:BUGTRAQid:20020727 PHENOELIT ADVISORY 0815 ++ // XEDIA
Trust: 0.6
db:SEEBUGid:SSVID-75480
Trust: 0.1
db:EXPLOIT-DBid:21656
Trust: 0.1
db:VULHUBid:VHN-6532
Trust: 0.1
sources:
            
            
            VULHUB: VHN-6532 // 
            
            
            
            BID: 5333 // 
            
            
            
            CNNVD: CNNVD-200212-658 // 
            
            
            
            NVD: CVE-2002-2149

REFERENCES
url:http://www.securityfocus.com/bid/5333
Trust: 1.7
url:http://online.securityfocus.com/archive/1/284649
Trust: 1.7
url:http://www.iss.net/security_center/static/9705.php
Trust: 1.7
url:http://www.lucent.com/products/subcategory/0,,ctid+2017-stid+10472-locl+1,00.html
Trust: 0.3
url:http://www.phenoelit.de/stuff/lucent_xedia.txt
Trust: 0.3
sources:
            
            
            VULHUB: VHN-6532 // 
            
            
            
            BID: 5333 // 
            
            
            
            CNNVD: CNNVD-200212-658 // 
            
            
            
            NVD: CVE-2002-2149

CREDITS
Published by FX
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-200212-658

SOURCES
db:VULHUBid:VHN-6532
db:BIDid:5333
db:CNNVDid:CNNVD-200212-658
db:NVDid:CVE-2002-2149

LAST UPDATE DATE
2024-08-14T15:36:09.849000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-6532date:2008-09-05T00:00:00
db:BIDid:5333date:2002-07-27T00:00:00
db:CNNVDid:CNNVD-200212-658date:2006-01-30T00:00:00
db:NVDid:CVE-2002-2149date:2008-09-05T20:32:27.603

SOURCES RELEASE DATE
db:VULHUBid:VHN-6532date:2002-12-31T00:00:00
db:BIDid:5333date:2002-07-27T00:00:00
db:CNNVDid:CNNVD-200212-658date:2002-12-31T00:00:00
db:NVDid:CVE-2002-2149date:2002-12-31T05:00:00