Details of VAR-200409-0093

ID

VAR-200409-0093

TITLE

Inkra Router Virtual Service Switch Remote Denial of Service Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2004-2625 // BID: 11242

DESCRIPTION

Inkra Router Virtual Service Switch is a device implemented by a routed virtual service exchange, which dynamically protects against internal networks and applications. Inkra Router Virtual Service Switch incorrectly handles abnormal network data. Remote attackers can use this vulnerability to conduct denial of service attacks on devices. No detailed vulnerability details are provided at this time. This issue is due to a failure of the application to handle exceptional network data. An attacker may leverage this issue to cause the affected device to crash, denying service to legitimate users

Trust: 0.81

sources: CNVD: CNVD-2004-2625 // BID: 11242

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2004-2625

AFFECTED PRODUCTS

vendor:	none	model:	-	scope:	-	version:	-	Trust: 0.6
vendor:	inkra	model:	networks virtual service switch	scope:	eq	version:	4000	Trust: 0.3
vendor:	inkra	model:	networks 1519tx virtual service switch	scope:	-	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1518tx virtual service switch	scope:	-	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1504gx virtual service switch vsm 2.1.4.b003	scope:	-	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1504gx virtual service switch	scope:	-	version:	-	Trust: 0.3
vendor:	inkra	model:	networks virtual service switch vsm 2.1.5-t006	scope:	ne	version:	4000	Trust: 0.3
vendor:	inkra	model:	networks virtual service switch vsm 2.0.9-b010	scope:	ne	version:	4000	Trust: 0.3
vendor:	inkra	model:	networks 1519tx virtual service switch vsm 2.1.5-t006	scope:	ne	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1519tx virtual service switch vsm 2.0.9-b010	scope:	ne	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1518tx virtual service switch vsm 2.1.5-t006	scope:	ne	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1518tx virtual service switch vsm 2.0.9-b010	scope:	ne	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1504gx virtual service switch vsm 2.1.5-t006	scope:	ne	version:	-	Trust: 0.3
vendor:	inkra	model:	networks 1504gx virtual service switch vsm 2.0.9-b010	scope:	ne	version:	-	Trust: 0.3

sources: CNVD: CNVD-2004-2625 // BID: 11242

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD:	CNVD-2004-2625
value:	MEDIUM
Trust: 0.6

CNVD:	CNVD-2004-2625
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2004-2625

THREAT TYPE

network

Trust: 0.3

sources: BID: 11242

TYPE

Failure to Handle Exceptional Conditions

Trust: 0.3

sources: BID: 11242

PATCH

title:

Patch for Inkra Router Virtual Service Switch Remote Denial of Service Vulnerability

url:

https://www.cnvd.org.cn/patchinfo/show/42870

Trust: 0.6

sources: CNVD: CNVD-2004-2625

EXTERNAL IDS

db:	BID	id:	11242	Trust: 0.9
db:	CNVD	id:	CNVD-2004-2625	Trust: 0.6

sources: CNVD: CNVD-2004-2625 // BID: 11242

REFERENCES

url:	http://www.inkra.com/products/inkra1500.html	Trust: 0.3
url:	http://www.inkra.com/products/inkra4000.html	Trust: 0.3

sources: BID: 11242

CREDITS

The individual responsible for the discovery of this issue is currently unknown; the vendor disclosed this issue.

Trust: 0.3

sources: BID: 11242

SOURCES

db:	CNVD	id:	CNVD-2004-2625
db:	BID	id:	11242

LAST UPDATE DATE

2022-05-17T02:00:50.284000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2004-2625	date:	2014-01-24T00:00:00
db:	BID	id:	11242	date:	2004-09-23T00:00:00

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2004-2625	date:	2004-09-23T00:00:00
db:	BID	id:	11242	date:	2004-09-23T00:00:00