CVE-2006-2240 - Unspecified vulnerability in the (1) web cache or (2) web proxy in Fujitsu NetShelter/FW allows remo

CVE-2006-2240

Summary

Unspecified vulnerability in the (1) web cache or (2) web proxy in Fujitsu NetShelter/FW allows remote attackers to cause a denial of service (device unresponsiveness) via certain DNS packets, as demonstrated by the OUSPG PROTOS DNS test suite. All Fujitsu NetShelter/FW models E12Lxx and E11Lxx are affected except E11L27 and E12L31. The listing of affected models is broad, but the following list is a list of exceptions: NetShelter/FW E11L27 NetShelter/FW E12L31 NetShelter/FW-P E10L29 NetShelter/FW-P E11L41 NetShelter/FW-L E10L31 NetShelter/FW-M E10L31

References

Vulnerable Configurations

cpe:2.3:h:fujitsu:netshelter_fw:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-l:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-l:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-m:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-m:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-p:*:*:*:*:*:*:*:*
cpe:2.3:h:fujitsu:netshelter_fw-p:*:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 20-07-2017 - 01:31)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	17791
cert-vn	VU#955777
misc	http://www.niscc.gov.uk/niscc/docs/br-20060425-00311.html?lang=en http://www.niscc.gov.uk/niscc/docs/re-20060425-00312.pdf?lang=en
secunia	19894
xf	dns-improper-request-handling(26081)

Last major update

20-07-2017 - 01:31

Published

09-05-2006 - 10:02

Last modified

20-07-2017 - 01:31