Details of VAR-200212-0695

ID

VAR-200212-0695

CVE

CVE-2002-2371

TITLE

Linksys WET11 Remote Denial of Service Attack Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-200212-362

DESCRIPTION

Linksys WET11 firmware 1.31 and 1.32 allows remote attackers to cause a denial of service (crash) via a packet containing the device's hardware address as the source MAC address in the DLC header. It has been reported that the WET11 device is prone to a denial of service condition when receiving specially crafted packets. The device will crash when it receives packets that have the same MAC address as the device itself. Linksys WET11 is an Ethernet to 802.11b bridge that can bridge a single host or an entire network

Trust: 1.26

sources: NVD: CVE-2002-2371 // BID: 6046 // VULHUB: VHN-6754

AFFECTED PRODUCTS

vendor:	linksys	model:	wet11	scope:	eq	version:	1.31	Trust: 1.6
vendor:	linksys	model:	wet11	scope:	eq	version:	1.32	Trust: 1.6
vendor:	linksys	model:	wet11 wireless ethernet bridge	scope:	-	version:	-	Trust: 0.3

sources: BID: 6046 // CNNVD: CNNVD-200212-362 // NVD: CVE-2002-2371

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2002-2371
value:	HIGH
Trust: 1.0
CNNVD:	CNNVD-200212-362
value:	HIGH
Trust: 0.6
VULHUB:	VHN-6754
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2002-2371
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
VULHUB:	VHN-6754
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-6754 // CNNVD: CNNVD-200212-362 // NVD: CVE-2002-2371

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.1

sources: VULHUB: VHN-6754 // NVD: CVE-2002-2371

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200212-362

TYPE

input validation

Trust: 0.6

sources: CNNVD: CNNVD-200212-362

EXTERNAL IDS

db:	BID	id:	6046	Trust: 2.0
db:	NVD	id:	CVE-2002-2371	Trust: 1.7
db:	CNNVD	id:	CNNVD-200212-362	Trust: 0.7
db:	NSFOCUS	id:	3736	Trust: 0.6
db:	VULNWATCH	id:	20021025 LINKSYS WET11 CRASHES WHEN SENT AN ETHERNET FRAME FROM ITS OWN MAC ADDRESS	Trust: 0.6
db:	XF	id:	11	Trust: 0.6
db:	BUGTRAQ	id:	20021025 LINKSYS WET11 CRASHES WHEN SENT AN ETHERNET FRAME FROM ITS OWN MAC ADDRESS	Trust: 0.6
db:	VULHUB	id:	VHN-6754	Trust: 0.1

sources: VULHUB: VHN-6754 // BID: 6046 // CNNVD: CNNVD-200212-362 // NVD: CVE-2002-2371

REFERENCES

url:	http://www.securityfocus.com/bid/6046	Trust: 1.7
url:	http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00375.html	Trust: 1.7
url:	http://www.linksys.com/download/vertxt/wet11_fw_ver.txt	Trust: 1.7
url:	http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0045.html	Trust: 1.7
url:	http://www.iss.net/security_center/static/10472.php	Trust: 1.7
url:	http://www.nsfocus.net/vulndb/3736	Trust: 0.6
url:	http://www.linksys.com/products/product.asp?grid=22&prid=432	Trust: 0.3

sources: VULHUB: VHN-6754 // BID: 6046 // CNNVD: CNNVD-200212-362 // NVD: CVE-2002-2371

CREDITS

netmask※ netmask@enZotech.net

Trust: 0.6

sources: CNNVD: CNNVD-200212-362

SOURCES

db:	VULHUB	id:	VHN-6754
db:	BID	id:	6046
db:	CNNVD	id:	CNNVD-200212-362
db:	NVD	id:	CVE-2002-2371

LAST UPDATE DATE

2024-08-14T12:33:19.586000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-6754	date:	2008-09-05T00:00:00
db:	BID	id:	6046	date:	2002-10-25T00:00:00
db:	CNNVD	id:	CNNVD-200212-362	date:	2002-12-31T00:00:00
db:	NVD	id:	CVE-2002-2371	date:	2008-09-05T20:33:03.087

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-6754	date:	2002-12-31T00:00:00
db:	BID	id:	6046	date:	2002-10-25T00:00:00
db:	CNNVD	id:	CNNVD-200212-362	date:	2002-10-25T00:00:00
db:	NVD	id:	CVE-2002-2371	date:	2002-12-31T05:00:00