CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4409

The (1) CHAP and (2) MS-CHAP-V2 authentication capabilities in the PPP Access Concentrator (PPPAC) function in Internet Initiative Japan SEIL/B1 firmware 1.00 through 2.52 use the same challenge for each authentication attempt, which allows remote attackers to bypass authentication via a replay attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.0%

CVSS Severity

CVSS v2 Score 2.6

References

Products affected by CVE-2009-4409

Iij » Seil/b1 » Version: 1.00

cpe:2.3:h:iij:seil/b1:1.00
Iij » Seil/b1 » Version: 2.01

cpe:2.3:h:iij:seil/b1:2.01
Iij » Seil/b1 » Version: 2.10

cpe:2.3:h:iij:seil/b1:2.10
Iij » Seil/b1 » Version: 2.20

cpe:2.3:h:iij:seil/b1:2.20
Iij » Seil/b1 » Version: 2.30

cpe:2.3:h:iij:seil/b1:2.30
Iij » Seil/b1 » Version: 2.40

cpe:2.3:h:iij:seil/b1:2.40
Iij » Seil/b1 » Version: 2.41

cpe:2.3:h:iij:seil/b1:2.41
Iij » Seil/b1 » Version: 2.42

cpe:2.3:h:iij:seil/b1:2.42
Iij » Seil/b1 » Version: 2.50

cpe:2.3:h:iij:seil/b1:2.50
Iij » Seil/b1 » Version: 2.51

cpe:2.3:h:iij:seil/b1:2.51
Iij » Seil/b1 » Version: 2.52

cpe:2.3:h:iij:seil/b1:2.52

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2009-4409

Products

Pricing

Contact Us