Vulnerabilities > CVE-2006-2078 - DNS Handling vulnerability in Multiple FITELnet Products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
COMPLETE Summary
Multiple unspecified vulnerabilities in multiple FITELnet products, including FITELnet-F40, F80, F100, F120, F1000, and E20/E30, allow remote attackers to cause a denial of service via crafted DNS messages that trigger errors in (1) ProxyDNS or (2) PKI-Resolver, as demonstrated by the OUSPG PROTOS DNS test suite.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 9 |
References
- http://secunia.com/advisories/19820
- http://www.furukawa.co.jp/fitelnet/topic/dns2_attacks.html
- http://www.kb.cert.org/vuls/id/955777
- http://www.niscc.gov.uk/niscc/docs/br-20060425-00311.html?lang=en
- http://www.niscc.gov.uk/niscc/docs/re-20060425-00312.pdf?lang=en
- http://www.securityfocus.com/bid/17710
- http://www.vupen.com/english/advisories/2006/1505
- http://www.vupen.com/english/advisories/2006/1536
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26081