Vulnerability Details CVE-2002-0886
Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.199
EPSS Ranking 95.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://www.cisco.com/warp/public/707/CBOS-DoS.shtml
- http://www.iss.net/security_center/static/9151.php
- http://www.iss.net/security_center/static/9153.php
- http://www.securityfocus.com/bid/4813
- http://www.securityfocus.com/bid/4814
- http://www.securityfocus.com/bid/4815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9152
- http://www.cisco.com/warp/public/707/CBOS-DoS.shtml
- http://www.iss.net/security_center/static/9151.php
- http://www.iss.net/security_center/static/9153.php
- http://www.securityfocus.com/bid/4813
- http://www.securityfocus.com/bid/4814
- http://www.securityfocus.com/bid/4815
- https://exchange.xforce.ibmcloud.com/vulnerabilities/9152
Products affected by CVE-2002-0886
-
cpe:2.3:o:cisco:cbos:2.0.1
-
cpe:2.3:o:cisco:cbos:2.1.0
-
cpe:2.3:o:cisco:cbos:2.1.0a
-
cpe:2.3:o:cisco:cbos:2.2.0
-
cpe:2.3:o:cisco:cbos:2.2.1
-
cpe:2.3:o:cisco:cbos:2.2.1a
-
cpe:2.3:o:cisco:cbos:2.3
-
cpe:2.3:o:cisco:cbos:2.3.2
-
cpe:2.3:o:cisco:cbos:2.3.5
-
cpe:2.3:o:cisco:cbos:2.3.5.015
-
cpe:2.3:o:cisco:cbos:2.3.7
-
cpe:2.3:o:cisco:cbos:2.3.7.002
-
cpe:2.3:o:cisco:cbos:2.3.8
-
cpe:2.3:o:cisco:cbos:2.3.9
-
cpe:2.3:o:cisco:cbos:2.3_.053
-
cpe:2.3:o:cisco:cbos:2.4.1
-
cpe:2.3:o:cisco:cbos:2.4.2
-
cpe:2.3:o:cisco:cbos:2.4.2ap
-
cpe:2.3:o:cisco:cbos:2.4.2b
-
cpe:2.3:o:cisco:cbos:2.4.3
-
cpe:2.3:o:cisco:cbos:2.4.4