Weekly Vulnerabilities Reports > January 1 to 7, 2001
4 new vulnerabilities reported during this period, including 0 critical vulnerabilities and 1 high severity vulnerabilities. This weekly summary report vulnerabilities in 5 products from 4 vendors including Cisco, Microsoft, Lucent, and Orinoco. Vulnerabilities are notably categorized as .
- 3 reported vulnerabilities are remotely exploitables.
- 4 reported vulnerabilities are exploitable by an anonymous user.
- Cisco has the most reported vulnerabilities, with 2 reported vulnerabilities.
The following table list reported vulnerabilities for the period covered by this report:
0 Critical Vulnerabilities
1 High Vulnerabilities
|2001-01-01||CVE-2001-0162||Microsoft|| Unspecified vulnerability in Microsoft Windows CE 3.0.9348 |
WinCE 3.0.9348 generates predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
3 Medium Vulnerabilities
|2001-01-01||CVE-2001-0161||Cisco|| Unspecified vulnerability in Cisco Aironet 340Series |
Cisco 340-series Aironet access point using firmware 11.01 does not use 6 of the 24 available IV bits for WEP encryption, which makes it easier for remote attackers to mount brute force attacks.
|2001-01-01||CVE-2001-0160|| Lucent |
|Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages.|| |
|2001-01-01||CVE-2001-0163||Cisco|| Unspecified vulnerability in Cisco Aironet Ap340 |
Cisco AP340 base station produces predictable TCP Initial Sequence Numbers (ISNs), which allows remote attackers to spoof or hijack TCP connections.
0 Low Vulnerabilities