Details of VAR-200604-0420

ID

VAR-200604-0420

CVE

CVE-2006-1609

TITLE

XFIT / S Unknown Denial Of Service Attack Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2006-2046

DESCRIPTION

Unspecified vulnerability in Hitachi XFIT/S, XFIT/S/JCA, XFIT/S/ZGN, and XFIT/S ZENGIN TCP/IP Procedure allows remote attackers to cause a denial of service (server process and transfer control process stop) when the products "receive data unexpectedly". There are unknown vulnerabilities in Hitachi XFIT / S, XFIT / S / JCA, XFIT / S / ZGN, and XFIT / S ZENGIN TCP / IP. (The server process and the transmission control process stop). XFIT/S is prone to a denial-of-service vulnerability. The vulnerability presents itself when the application receives data unexpectedly. Due to a lack of details, further information cannot be provided at the moment. This BID will be updated when more details become available

Trust: 1.71

sources: NVD: CVE-2006-1609 // CNVD: CNVD-2006-2046 // BID: 17329

IOT TAXONOMY

category:

['ICS']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2006-2046

AFFECTED PRODUCTS

vendor:	hitachi	model:	xfit s jca	scope:	eq	version:	Trust: 1.6
vendor:	hitachi	model:	xfit s zgin	scope:	eq	version:	Trust: 1.6
vendor:	hitachi	model:	xfit s	scope:	eq	version:	Trust: 1.6
vendor:	hitachi	model:	xfit s zengin	scope:	eq	version:	Trust: 1.6
vendor:	xfit	model:	s hitachi	scope:	eq	version:	Trust: 0.6
vendor:	xfit	model:	s jca hitachi	scope:	eq	version:	Trust: 0.6
vendor:	xfit	model:	s zengin hitachi	scope:	eq	version:	Trust: 0.6
vendor:	xfit	model:	s zgin hitachi	scope:	eq	version:	Trust: 0.6
vendor:	xfit s	model:	xfit/s/zgn	scope:	eq	version:	Trust: 0.3
vendor:	xfit s	model:	xfit/s/jca	scope:	eq	version:	Trust: 0.3
vendor:	xfit s	model:	xfit/s zengin	scope:	eq	version:	Trust: 0.3
vendor:	xfit s	model:	xfit/s	scope:	eq	version:	Trust: 0.3

sources: CNVD: CNVD-2006-2046 // BID: 17329 // CNNVD: CNNVD-200604-041 // NVD: CVE-2006-1609

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2006-1609
value:	MEDIUM
Trust: 1.0
CNVD:	CNVD-2006-2046
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-200604-041
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2006-1609
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0
CNVD:	CNVD-2006-2046
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

sources: CNVD: CNVD-2006-2046 // CNNVD: CNNVD-200604-041 // NVD: CVE-2006-1609

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2006-1609

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200604-041

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-200604-041

EXTERNAL IDS

db:	BID	id:	17329	Trust: 2.5
db:	NVD	id:	CVE-2006-1609	Trust: 2.2
db:	HITACHI	id:	HS06-004	Trust: 1.9
db:	SECUNIA	id:	19472	Trust: 1.6
db:	OSVDB	id:	24309	Trust: 1.6
db:	CNVD	id:	CNVD-2006-2046	Trust: 0.6
db:	XF	id:	25567	Trust: 0.6
db:	CNNVD	id:	CNNVD-200604-041	Trust: 0.6

sources: CNVD: CNVD-2006-2046 // BID: 17329 // CNNVD: CNNVD-200604-041 // NVD: CVE-2006-1609

REFERENCES

url:	http://www.securityfocus.com/bid/17329	Trust: 2.2
url:	http://www.hitachi-support.com/security_e/vuls_e/hs06-004_e/index-e.html	Trust: 1.9
url:	http://secunia.com/advisories/19472	Trust: 1.6
url:	http://www.osvdb.org/24309	Trust: 1.6
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/25567	Trust: 1.0
url:	http://xforce.iss.net/xforce/xfdb/25567	Trust: 0.6

sources: CNVD: CNVD-2006-2046 // BID: 17329 // CNNVD: CNNVD-200604-041 // NVD: CVE-2006-1609

CREDITS

Reported in a Hitachi advisory.

Trust: 0.9

sources: BID: 17329 // CNNVD: CNNVD-200604-041

SOURCES

db:	CNVD	id:	CNVD-2006-2046
db:	BID	id:	17329
db:	CNNVD	id:	CNNVD-200604-041
db:	NVD	id:	CVE-2006-1609

LAST UPDATE DATE

2024-08-14T15:40:46.399000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2006-2046	date:	2006-04-04T00:00:00
db:	BID	id:	17329	date:	2006-03-31T23:53:00
db:	CNNVD	id:	CNNVD-200604-041	date:	2006-04-04T00:00:00
db:	NVD	id:	CVE-2006-1609	date:	2017-07-20T01:30:44.770

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2006-2046	date:	2006-04-04T00:00:00
db:	BID	id:	17329	date:	2006-03-31T00:00:00
db:	CNNVD	id:	CNNVD-200604-041	date:	2006-04-04T00:00:00
db:	NVD	id:	CVE-2006-1609	date:	2006-04-04T10:04:00