Vulnerability Details : CVE-2002-0886
Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.
Vulnerability category: Denial of service
Products affected by CVE-2002-0886
- cpe:2.3:o:cisco:cbos:2.4.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.2.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.2.1a:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.4.2:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.1.0a:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.2.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.8:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.9:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.2:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.1.0:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.5:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.7:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.7.002:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.4.3:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.4.4:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3.5.015:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.4.2ap:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.4.2b:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:cbos:2.3_.053:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2002-0886
2.75%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 89 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2002-0886
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2002-0886
-
http://www.securityfocus.com/bid/4814
-
http://www.iss.net/security_center/static/9153.php
-
http://www.securityfocus.com/bid/4813
Patch;Vendor Advisory
-
http://www.securityfocus.com/bid/4815
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/9152
-
http://www.iss.net/security_center/static/9151.php
Patch;Vendor Advisory
-
http://www.cisco.com/warp/public/707/CBOS-DoS.shtml
Jump to