CVE-2008-6497 - Vulnerability Details - OpenCVE

The Neostrada Livebox ADSL Router allows remote attackers to cause a denial of service (network outage) via multiple HTTP requests for the /- URI.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Tp	Neostrada Livebox Adsl Router

Configuration 1 [-]

cpe:2.3:h:tp:neostrada_livebox_adsl_router:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/50673
http://secunia.com/advisories/33026
http://www.securityfocus.com/archive/1/499010/100/0/threaded
http://www.securityfocus.com/bid/32696
https://exchange.xforce.ibmcloud.com/vulnerabilities/47183
https://www.exploit-db.com/exploits/7387

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2009-03-20T00:00:00

Updated: 2024-08-07T11:34:47.076Z

Reserved: 2009-03-19T00:00:00

Link: CVE-2008-6497

Vulnrichment

No data.

NVD

Status : Modified

Published: 2009-03-20T00:30:00.453

Modified: 2024-11-21T00:56:41.230

Link: CVE-2008-6497

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-12-08T00:00:00", "descriptions": [{"lang": "en", "value": "The Neostrada Livebox ADSL Router allows remote attackers to cause a denial of service (network outage) via multiple HTTP requests for the /- URI."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "33026", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/33026"}, {"name": "50673", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/50673"}, {"name": "neostradalivebox-adsl-dos(47183)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47183"}, {"name": "7387", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/7387"}, {"name": "20081208 Neostrada Livebox Remote Network Down PoC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/499010/100/0/threaded"}, {"name": "32696", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/32696"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-6497", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Neostrada Livebox ADSL Router allows remote attackers to cause a denial of service (network outage) via multiple HTTP requests for the /- URI."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "33026", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/33026"}, {"name": "50673", "refsource": "OSVDB", "url": "http://osvdb.org/50673"}, {"name": "neostradalivebox-adsl-dos(47183)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47183"}, {"name": "7387", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/7387"}, {"name": "20081208 Neostrada Livebox Remote Network Down PoC Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/499010/100/0/threaded"}, {"name": "32696", "refsource": "BID", "url": "http://www.securityfocus.com/bid/32696"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T11:34:47.076Z"}, "title": "CVE Program Container", "references": [{"name": "33026", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/33026"}, {"name": "50673", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/50673"}, {"name": "neostradalivebox-adsl-dos(47183)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47183"}, {"name": "7387", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/7387"}, {"name": "20081208 Neostrada Livebox Remote Network Down PoC Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://www.securityfocus.com/archive/1/499010/100/0/threaded"}, {"name": "32696", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/32696"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-6497", "datePublished": "2009-03-20T00:00:00", "dateReserved": "2009-03-19T00:00:00", "dateUpdated": "2024-08-07T11:34:47.076Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:tp:neostrada_livebox_adsl_router:-:*:*:*:*:*:*:*", "matchCriteriaId": "7027420B-BBC0-4458-AD70-4BEB1B8166F7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Neostrada Livebox ADSL Router allows remote attackers to cause a denial of service (network outage) via multiple HTTP requests for the /- URI."}, {"lang": "es", "value": "El router ADSL Neostrada Livebox permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de red) a trav\u00e9s de m\u00faltiples peticiones HTTP para la URI /-."}], "id": "CVE-2008-6497", "lastModified": "2024-11-21T00:56:41.230", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-03-20T00:30:00.453", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/50673"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33026"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/499010/100/0/threaded"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/32696"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47183"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/7387"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/50673"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/33026"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/archive/1/499010/100/0/threaded"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/32696"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/47183"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/7387"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}