Yamaha RTX, RT, SRT, RTV, RTW, and RTA series routers with firmware 6.x through 10.x, and NEC IP38X series routers with firmware 6.x through 10.x, do not properly handle IP header options, which allows remote attackers to cause a denial of service (device reboot) via a crafted option that triggers access to an invalid memory location.
Metrics
No CVSS v4.0
No CVSS v3.1
No CVSS v3.0
Access Vector Network
Access Complexity Low
Authentication None
Confidentiality Impact None
Integrity Impact None
Availability Impact Complete
AV:N/AC:L/Au:N/C:N/I:N/A:C
This CVE is not in the KEV list.
Key SSVC decision points have not yet been added.
Affected Vendors & Products
Vendors | Products |
---|---|
Nec |
|
Yamaha |
|
Configuration 1 [-]
|
Configuration 2 [-]
|
No data.
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: jpcert
Published: 2011-05-09T19:00:00Z
Updated: 2024-09-16T20:43:08.613Z
Reserved: 2011-03-09T00:00:00Z
Link: CVE-2011-1323
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2011-05-09T19:55:03.257
Modified: 2011-05-27T04:00:00.000
Link: CVE-2011-1323
Redhat
No data.