CERT home
vulnerabilities & fixesevaluations & practicesresearch & analysistraining & education
homesearchFAQsite indexcontact
Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information
 

 View Notes By
Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric

Vulnerability Note VU#104823

Cayman gateways vulnerable to a denial of service via oversized ICMP echo (ping) requests.

Overview

Cayman gateways vulnerable to a denial of service via oversized ICMP echo (ping) requests. Installing the newest version of the vendor software will resolve this vulnerability.

I. Description

Cayman gateways running versions 5.5 Build R0, 5.3 Build R2, 5.3 Build R1 are vulnerable to an oversized ICMP echo (ping) request. By sending an oversized ping packet to the gateway, it is possible to crash various services resulting in a denial of service.

II. Impact

Exploiting this vulnerability results in a denial of service.

III. Solution

Upgrade to the latest vendor software release.

Systems Affected
VendorStatusDate Updated
CaymanVulnerable21-Aug-2001

References


http://www.securityfocus.com/bid/1240

Credit

This vulnerability was discovered by Cassius.

This document was written by Jason Rafail.

Other Information

Date Public05/23/2000
Date First Published08/27/2001 10:49:50 AM
Date Last Updated08/27/2001
CERT Advisory 
CVE NameCVE-2000-0418
Metric1.41
Document Revision11

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

Copyright 2001 Carnegie Mellon University