SkipNavigation
Home | FAQ | Contact | Privacy Policy
US-CERT
American Flag
  Vulnerability
Notes
Database

Search Vulnerability Notes

Vulnerability Notes Help Information

Report a Vulnerability

 
 View Notes By
  Name

ID Number

CVE Name

Date Public

Date Published

Date Updated

Severity Metric
 Other Documents
  Technical Alerts

Technical Bulletins

Alerts

Security Tips

Vulnerability Note VU#312761

Cayman gateways are vulnerable to a denial of service via a portscan

Overview

Cayman gateways are vulnerable to a denial of service. An attacker can send a number of TCP connect() requests or SYN packets, in conjunction with a "Bouncing" vulnerability, and can cause a denial of service to the gateway.

I. Description

The gateway will crash after receiving a number of TCP connect() requests or SYN packets. This can be exploited via the LAN side, and via the WAN side in conjunction with a "bouncing" vulnerability. Installing the newest version will resolve this vulnerability.

II. Impact

A denial of service occurs.

III. Solution

Upgrade to the latest vendor software release.

Systems Affected
VendorStatusDate NotifiedDate Updated
CaymanVulnerable21-Aug-2001

References

http://www.securityfocus.com/bid/3001

Credit

This vulnerability was discovered by Karim Elmaizi.

This document was written by Jason Rafail.

Other Information

Date Public:2001-07-09
Date First Published:2001-08-27
Date Last Updated:2001-08-27
CERT Advisory: 
CVE-ID(s): 
NVD-ID(s): 
US-CERT Technical Alerts: 
Severity Metric:2.81
Document Revision:7

If you have feedback, comments, or additional information about this vulnerability, please send us email.
 

 
Page Corner Image
Copyright 2001 Carnegie Mellon University
Disclaimers and copyright information
Get a PDF Reader