cvelistv5 - CVE-2007-6372

CVE-2007-6372 (GCVE-0-2007-6372)

Vulnerability from cvelistv5

Published

2007-12-15 01:00

Modified

2024-08-07 16:02

Severity ?

CWE

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/28100	Vendor Advisory
cve@mitre.org	http://www.kb.cert.org/vuls/id/929656	US Government Resource
cve@mitre.org	http://www.osvdb.org/39157
cve@mitre.org	http://www.securityfocus.com/bid/26869
cve@mitre.org	http://www.securityfocus.com/bid/28999
cve@mitre.org	http://www.securitytracker.com/id?1019100
cve@mitre.org	http://www.vupen.com/english/advisories/2007/4223	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28100	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/929656	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/39157
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/26869
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/28999
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1019100
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/4223	Vendor Advisory

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T16:02:36.775Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "39157",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/39157"
          },
          {
            "name": "1019100",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1019100"
          },
          {
            "name": "28100",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/28100"
          },
          {
            "name": "26869",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26869"
          },
          {
            "name": "28999",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/28999"
          },
          {
            "name": "ADV-2007-4223",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/4223"
          },
          {
            "name": "VU#929656",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/929656"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-12-14T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2007-12-21T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "39157",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/39157"
        },
        {
          "name": "1019100",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1019100"
        },
        {
          "name": "28100",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/28100"
        },
        {
          "name": "26869",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26869"
        },
        {
          "name": "28999",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/28999"
        },
        {
          "name": "ADV-2007-4223",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/4223"
        },
        {
          "name": "VU#929656",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/929656"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-6372",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "39157",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/39157"
            },
            {
              "name": "1019100",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1019100"
            },
            {
              "name": "28100",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/28100"
            },
            {
              "name": "26869",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26869"
            },
            {
              "name": "28999",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/28999"
            },
            {
              "name": "ADV-2007-4223",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/4223"
            },
            {
              "name": "VU#929656",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/929656"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-6372",
    "datePublished": "2007-12-15T01:00:00",
    "dateReserved": "2007-12-14T00:00:00",
    "dateUpdated": "2024-08-07T16:02:36.775Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-6372\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-12-15T01:46:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad no especificada en Juniper JUNOS versiones 7.3 hasta 8.4, permite a los atacantes remotos causar una denegaci\u00f3n de servicio (bloqueo) por medio de paquetes BGP malformados, posiblemente paquetes BGP UPDATE que desencadenan un flapping de sesi\u00f3n.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:7.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F443DB8-1E98-4D66-A75D-DCC4716218E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:7.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E51EBFBB-9236-436F-AC05-C7AFD9452A73\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:7.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"851DD20A-9796-4B06-A9FF-C16D74310156\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:7.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38C56079-E4AC-4CE2-805D-AB893F82070C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0EE5FF2-A12F-41EF-9A3D-66B471288BF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:8.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BB6086F9-431D-4A9D-BBFA-12A3A7FCE317\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:8.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C8EFF72-7F38-4B55-B449-F22801D7C18B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:8.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"195D3916-4B92-4A49-8988-20F9B9E9FF34\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:juniper:junos:8.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9AD4416F-E655-4D37-A28E-0623AA031423\"}]}]}],\"references\":[{\"url\":\"http://secunia.com/advisories/28100\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/929656\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/39157\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/26869\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/28999\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1019100\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/4223\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/28100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/929656\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/39157\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/26869\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/28999\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1019100\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/4223\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

var-200712-0088

Vulnerability from variot

Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping. BGP implementations from multiple vendors including Juniper may not properly handle specially crafted BGP UPDATE messages. These vulnerabilities could allow an unauthenticated, remote attacker to cause a denial of service. Disrupting BGP communication could lead to routing instability. BGP implementations from multiple vendors including Juniper may not properly handle specially crafted BGP UPDATE messages. These vulnerabilities could allow an unauthenticated, remote attacker to cause a denial of service. Disrupting BGP communication could lead to routing instability. Border Gateway Protocol (BGP) Is AS (Autonomous System) A widely used routing protocol. Between peer routers BGP The exchange of route information by means of is important in the stable operation of the Internet. Versions of JUNOS from 7.3 to 8.4 are reported vulnerable. NOTE: Multiple sources report that upgrading to JUNOS 8.5R1 or above will solve this issue, but this could not be confirmed at the time of writing. It has been assigned its own record because details regarding what technologies are vulnerable and how the various vendors have implemented BGP are not currently available. As more information emerges, we will create individual records to further document the vulnerability for the various vulnerable technologies. AlaxalA Networks AX series and Hitachi GR series are reported vulnerable to this issue. Unspecified technologies from Avici Systems, Inc., Century Systems Inc., and Yamaha Corporation are also reported vulnerable. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company's hardware system. The operating system provides a secure programming interface and Junos SDK. There is a loophole in the implementation of the BGP protocol in JUNOS, and a remote attacker may take advantage of this loophole. ----------------------------------------------------------------------

Secunia Network Software Inspector 2.0 (NSI) - Public Beta

The Public Beta has ended. Thanks to all that participated.

Learn more: http://secunia.com/network_software_inspector_2/

TITLE: ALAXALA Networks AX Series BGP UPDATE Message Processing Denial of Service

SECUNIA ADVISORY ID: SA30054

VERIFY ADVISORY: http://secunia.com/advisories/30054/

CRITICAL: Moderately critical

IMPACT: DoS

WHERE:

From remote

OPERATING SYSTEM: ALAXALA Networks AX7800S Series http://secunia.com/product/5125/ ALAXALA Networks AX7800R Series http://secunia.com/product/5124/ ALAXALA Networks AX7700R http://secunia.com/product/11176/ ALAXALA Networks AX5400S Series http://secunia.com/product/5126/ ALAXALA Networks AX3600S Series http://secunia.com/product/11174/ ALAXALA Networks AX2400S Series http://secunia.com/product/11175/ ALAXALA Networks AX2000R Series http://secunia.com/product/11177/

DESCRIPTION: A vulnerability has been reported in ALAXALA Networks AX series, which can be exploited by malicious people to cause a DoS (Denial of Service).

SOLUTION: Restrict network access on affected systems.

PROVIDED AND/OR DISCOVERED BY: Reported via US-CERT.

ORIGINAL ADVISORY: US-CERT VU#929656: http://www.kb.cert.org/vuls/id/929656

About: This Advisory was delivered by Secunia as a free service to help everybody keeping their systems up to date against the latest vulnerabilities.

Subscribe: http://secunia.com/secunia_security_advisories/

Definitions: (Criticality, Where etc.) http://secunia.com/about_secunia_advisories/

Please Note: Secunia recommends that you verify all advisories you receive by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Unsubscribe: Secunia Security Advisories http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org

2003: 2,700 advisories published 2004: 3,100 advisories published 2005: 4,600 advisories published 2006: 5,300 advisories published

How do you know which Secunia advisories are important to you?

The Secunia Vulnerability Intelligence Solutions allows you to filter and structure all the information you need, so you can address issues effectively.

SOLUTION: Apply updates (contact the vendor for more information)

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-200712-0088",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "juniper",
        "version": "8.4"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.9,
        "vendor": "juniper",
        "version": "7.3"
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "avici",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "century",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "extreme",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "juniper",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "nec",
        "version": null
      },
      {
        "model": null,
        "scope": null,
        "trust": 1.6,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "7.6"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "8.2"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "8.3"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "7.5"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "8.1"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "7.4"
      },
      {
        "model": "junos",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "juniper",
        "version": "8.0"
      },
      {
        "model": "gr4000",
        "scope": null,
        "trust": 1.1,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8724sl v2"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8724sl"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8748sl"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8724xl"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8748xl"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "8948xl"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9606sx/sc"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9606t"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9816gb"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9812t"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9924t/4sp"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9924sp"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "9924ts"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar410 v2/ar410s v2"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar415s"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar450s"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar550s"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar570s"
      },
      {
        "model": "centrecom",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": "ar740/ar740s"
      },
      {
        "model": "switchblade 5400s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": null
      },
      {
        "model": "switchblade 7800r series",
        "scope": null,
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": null
      },
      {
        "model": "switchblade 7800s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": null
      },
      {
        "model": "switchblade4000",
        "scope": null,
        "trust": 0.8,
        "vendor": "allied telesis",
        "version": null
      },
      {
        "model": "ax2000r series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax3600s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax5400s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax6300s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax6700s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax7700r series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax7800r series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "ax7800s series",
        "scope": null,
        "trust": 0.8,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "xr-440",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "century",
        "version": "1.7.7 before"
      },
      {
        "model": "xr-540",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "century",
        "version": "3.5.0 before"
      },
      {
        "model": "xr-730",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "century",
        "version": "3.4.0 before"
      },
      {
        "model": "rt105 series",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rt107e",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rt140 series",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rt250i",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rt300i",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rtx1000",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rtx1100",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rtx1500",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rtx2000",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "rtx3000",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "srt100",
        "scope": null,
        "trust": 0.8,
        "vendor": "yamaha",
        "version": null
      },
      {
        "model": "fitelnet-f series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "furukawa electric",
        "version": "fitelnet-f40"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "1000"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "107e"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "1100"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "1500"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "250i"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "3000"
      },
      {
        "model": "ip38x series",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "sr100"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "s300"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "s400"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "r400 (ax7800s"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "5400s"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "7800r)"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "s3600 (ax3600s)"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "s6300"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "s6700 (ax6300s"
      },
      {
        "model": "ip8800/s,/r",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "nec",
        "version": "6700s)"
      },
      {
        "model": "juniper t/m/mx-series router",
        "scope": null,
        "trust": 0.8,
        "vendor": "nec",
        "version": null
      },
      {
        "model": "gr2000",
        "scope": null,
        "trust": 0.8,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gs3000",
        "scope": null,
        "trust": 0.8,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gs4000",
        "scope": null,
        "trust": 0.8,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "junos 8.5.r1",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "juniper",
        "version": null
      },
      {
        "model": "gr3000",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gr2000-bh",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gr2000-2b+",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gr2000-2b",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "gr2000-1b",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "alaxala ax",
        "scope": null,
        "trust": 0.3,
        "vendor": "hitachi",
        "version": null
      },
      {
        "model": "networks ax7800s",
        "scope": null,
        "trust": 0.3,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "networks ax7800r",
        "scope": null,
        "trust": 0.3,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "networks ax7700r",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "alaxala",
        "version": "0"
      },
      {
        "model": "networks ax5400s",
        "scope": null,
        "trust": 0.3,
        "vendor": "alaxala",
        "version": null
      },
      {
        "model": "networks ax3600s",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "alaxala",
        "version": "0"
      },
      {
        "model": "networks ax2400s",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "alaxala",
        "version": "0"
      },
      {
        "model": "networks ax2000r",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "alaxala",
        "version": "0"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/h:allied_telesis_k.k.:centrecom",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:allied_telesis_k.k.:switchblade_5400s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:allied_telesis_k.k.:switchblade_7800r",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:allied_telesis_k.k.:switchblade_7800s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:allied_telesis_k.k.:switchblade4000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax2000r",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax3600s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax5400s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax6300s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax6700s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax7700r",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax7800r",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:alaxala:ax7800s",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:centurysys:xr-440",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:centurysys:xr-540",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:centurysys:xr-730",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rt105",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rt107e",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rt140",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rt250i",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rt300i",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rtx1000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rtx1100",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rtx1500",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rtx2000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:rtx3000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:yamaha:srt100",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:furukawa_electric:fitelnet-f",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:nec:ip38x",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/a:nec:ip8800_s_r",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:nec:juniper_t_m_mx-series_router",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:hitachi:gr2000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:hitachi:gr4000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:hitachi:gs3000",
                "vulnerable": true
              },
              {
                "cpe22Uri": "cpe:/h:hitachi:gs4000",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Juniper Networks",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      }
    ],
    "trust": 0.6
  },
  "cve": "CVE-2007-6372",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "CVE-2007-6372",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 10.0,
            "id": "VHN-29734",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "CARNEGIE MELLON",
            "id": "VU#929656",
            "trust": 1.6,
            "value": "24.49"
          },
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2007-6372",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2007-6372",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-200712-169",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "VULHUB",
            "id": "VHN-29734",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping. BGP implementations from multiple vendors including Juniper may not properly handle specially crafted BGP UPDATE messages. These vulnerabilities could allow an unauthenticated, remote attacker to cause a denial of service. Disrupting BGP communication could lead to routing instability. BGP implementations from multiple vendors including Juniper may not properly handle specially crafted BGP UPDATE messages. These vulnerabilities could allow an unauthenticated, remote attacker to cause a denial of service. Disrupting BGP communication could lead to routing instability. Border Gateway Protocol (BGP) Is AS (Autonomous System) A widely used routing protocol. Between peer routers BGP The exchange of route information by means of is important in the stable operation of the Internet. \nVersions of JUNOS from 7.3 to 8.4 are reported vulnerable. \nNOTE: Multiple sources report that upgrading to JUNOS 8.5R1 or above will solve this issue, but this could not be confirmed at the time of writing. It has been assigned its own record because details regarding what technologies are vulnerable and how the various vendors have implemented BGP are not currently available. As more information emerges, we will create individual records to further document the vulnerability for the various vulnerable technologies. \nAlaxalA Networks AX series and Hitachi GR series are reported vulnerable to this issue. Unspecified technologies from Avici Systems, Inc., Century Systems Inc., and Yamaha Corporation are also reported vulnerable. Juniper Networks Juniper Junos is a set of network operating system of Juniper Networks (Juniper Networks) dedicated to the company\u0027s hardware system. The operating system provides a secure programming interface and Junos SDK. There is a loophole in the implementation of the BGP protocol in JUNOS, and a remote attacker may take advantage of this loophole. ----------------------------------------------------------------------\n\nSecunia Network Software Inspector 2.0 (NSI) - Public Beta\n\nThe Public Beta has ended. Thanks to all that participated. \n\nLearn more:\nhttp://secunia.com/network_software_inspector_2/\n\n----------------------------------------------------------------------\n\nTITLE:\nALAXALA Networks AX Series BGP UPDATE Message Processing Denial of\nService\n\nSECUNIA ADVISORY ID:\nSA30054\n\nVERIFY ADVISORY:\nhttp://secunia.com/advisories/30054/\n\nCRITICAL:\nModerately critical\n\nIMPACT:\nDoS\n\nWHERE:\n\u003eFrom remote\n\nOPERATING SYSTEM:\nALAXALA Networks AX7800S Series\nhttp://secunia.com/product/5125/\nALAXALA Networks AX7800R Series\nhttp://secunia.com/product/5124/\nALAXALA Networks AX7700R\nhttp://secunia.com/product/11176/\nALAXALA Networks AX5400S Series\nhttp://secunia.com/product/5126/\nALAXALA Networks AX3600S Series\nhttp://secunia.com/product/11174/\nALAXALA Networks AX2400S Series\nhttp://secunia.com/product/11175/\nALAXALA Networks AX2000R Series\nhttp://secunia.com/product/11177/\n\nDESCRIPTION:\nA vulnerability has been reported in ALAXALA Networks AX series,\nwhich can be exploited by malicious people to cause a DoS (Denial of\nService). \n\nSOLUTION:\nRestrict network access on affected systems. \n\nPROVIDED AND/OR DISCOVERED BY:\nReported via US-CERT. \n\nORIGINAL ADVISORY:\nUS-CERT VU#929656:\nhttp://www.kb.cert.org/vuls/id/929656\n\n----------------------------------------------------------------------\n\nAbout:\nThis Advisory was delivered by Secunia as a free service to help\neverybody keeping their systems up to date against the latest\nvulnerabilities. \n\nSubscribe:\nhttp://secunia.com/secunia_security_advisories/\n\nDefinitions: (Criticality, Where etc.)\nhttp://secunia.com/about_secunia_advisories/\n\n\nPlease Note:\nSecunia recommends that you verify all advisories you receive by\nclicking the link. \nSecunia NEVER sends attached files with advisories. \nSecunia does not advise people to install third party patches, only\nuse those supplied by the vendor. \n\n----------------------------------------------------------------------\n\nUnsubscribe: Secunia Security Advisories\nhttp://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org\n\n----------------------------------------------------------------------\n\n\n. \n\n----------------------------------------------------------------------\n\n2003: 2,700 advisories published\n2004: 3,100 advisories published\n2005: 4,600 advisories published\n2006: 5,300 advisories published\n\nHow do you know which Secunia advisories are important to you?\n\nThe Secunia Vulnerability Intelligence Solutions allows you to filter\nand structure all the information you need, so you can address issues\neffectively. \n\nSOLUTION:\nApply updates (contact the vendor for more information)",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "PACKETSTORM",
        "id": "66123"
      },
      {
        "db": "PACKETSTORM",
        "id": "66130"
      },
      {
        "db": "PACKETSTORM",
        "id": "61855"
      }
    ],
    "trust": 3.96
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#929656",
        "trust": 4.9
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372",
        "trust": 4.7
      },
      {
        "db": "SECUNIA",
        "id": "28100",
        "trust": 4.2
      },
      {
        "db": "SECTRACK",
        "id": "1019100",
        "trust": 4.1
      },
      {
        "db": "BID",
        "id": "26869",
        "trust": 3.6
      },
      {
        "db": "OSVDB",
        "id": "39157",
        "trust": 3.3
      },
      {
        "db": "BID",
        "id": "28999",
        "trust": 2.8
      },
      {
        "db": "SECUNIA",
        "id": "30028",
        "trust": 1.8
      },
      {
        "db": "VUPEN",
        "id": "ADV-2007-4223",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337",
        "trust": 0.8
      },
      {
        "db": "NSFOCUS",
        "id": "11289",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169",
        "trust": 0.6
      },
      {
        "db": "SECUNIA",
        "id": "30054",
        "trust": 0.2
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "66123",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "66130",
        "trust": 0.1
      },
      {
        "db": "PACKETSTORM",
        "id": "61855",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "PACKETSTORM",
        "id": "66123"
      },
      {
        "db": "PACKETSTORM",
        "id": "66130"
      },
      {
        "db": "PACKETSTORM",
        "id": "61855"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "id": "VAR-200712-0088",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      }
    ],
    "trust": 0.01
  },
  "last_update_date": "2024-11-23T21:48:34.117000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "20080513",
        "trust": 0.8,
        "url": "http://www.furukawa.co.jp/fitelnet/topic/vulnera_20080513.html"
      },
      {
        "title": "JPCERT91637337",
        "trust": 0.8,
        "url": "http://www.centurysys.co.jp/support/xr_common/JPCERT91637337.html"
      },
      {
        "title": "NV08-004",
        "trust": 0.8,
        "url": "http://www.nec.co.jp/security-info/secinfo/nv08-004.html"
      },
      {
        "title": "VU929656",
        "trust": 0.8,
        "url": "http://www.rtpro.yamaha.co.jp/RT/FAQ/Security/VU929656.html"
      },
      {
        "title": "20081024",
        "trust": 0.8,
        "url": "http://www.allied-telesis.co.jp/support/list/faq/vuls/20081024.html"
      },
      {
        "title": "AX-VU2008-01",
        "trust": 0.8,
        "url": "http://www.alaxala.com/jp/support/security/20080508.html"
      },
      {
        "title": "BGP_UPDATE",
        "trust": 0.8,
        "url": "http://www.hitachi.co.jp/Prod/comp/network/notice/BGP_UPDATE.html"
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-20",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 3.3,
        "url": "http://www.securityfocus.com/bid/26869"
      },
      {
        "trust": 3.3,
        "url": "http://www.kb.cert.org/vuls/id/929656"
      },
      {
        "trust": 3.0,
        "url": "http://www.frsirt.com/english/advisories/2007/4223"
      },
      {
        "trust": 2.5,
        "url": "http://www.securityfocus.com/bid/28999"
      },
      {
        "trust": 2.5,
        "url": "http://secunia.com/advisories/28100"
      },
      {
        "trust": 2.4,
        "url": "http://jvn.jp/cert/jvnvu929656/index.html"
      },
      {
        "trust": 2.4,
        "url": "http://securitytracker.com/alerts/2007/dec/1019100.html"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/28100/"
      },
      {
        "trust": 1.7,
        "url": "http://secunia.com/advisories/30028/"
      },
      {
        "trust": 1.7,
        "url": "http://www.osvdb.org/39157"
      },
      {
        "trust": 1.7,
        "url": "http://www.securitytracker.com/id?1019100"
      },
      {
        "trust": 1.6,
        "url": "http://tools.ietf.org/html/rfc4271"
      },
      {
        "trust": 1.6,
        "url": "http://www.iana.org/assignments/bgp-parameters"
      },
      {
        "trust": 1.6,
        "url": "http://tools.ietf.org/html/rfc2385"
      },
      {
        "trust": 1.6,
        "url": "http://tools.ietf.org/html/rfc2439"
      },
      {
        "trust": 1.6,
        "url": "http://nvd.nist.gov/nvd.cfm?cvename=cve-2007-6372"
      },
      {
        "trust": 1.6,
        "url": "https://www.juniper.net/alerts/viewalert.jsp?actionbtn=search\u0026txtalertnumber=psn-2007-12-008\u0026viewmod%20e=view"
      },
      {
        "trust": 1.6,
        "url": "http://isc.sans.org/diary.php?storyid=3748"
      },
      {
        "trust": 1.6,
        "url": "https://puck.nether.net/pipermail/juniper-nsp/2007-december/009294.html"
      },
      {
        "trust": 1.6,
        "url": "https://puck.nether.net/pipermail/juniper-nsp/2007-december/009299.html"
      },
      {
        "trust": 1.6,
        "url": "http://osvdb.org/show/osvdb/39157"
      },
      {
        "trust": 1.6,
        "url": "http://www.team-cymru.org/?sec=13\u0026opt=28"
      },
      {
        "trust": 1.1,
        "url": "http://www.vupen.com/english/advisories/2007/4223"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2007-6372"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2007-6372"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/11289"
      },
      {
        "trust": 0.3,
        "url": "http://www.juniper.net/"
      },
      {
        "trust": 0.3,
        "url": "http://secunia.com/secunia_security_advisories/"
      },
      {
        "trust": 0.3,
        "url": "http://secunia.com/sec_adv_unsubscribe/?email=packet%40packetstormsecurity.org"
      },
      {
        "trust": 0.3,
        "url": "http://secunia.com/about_secunia_advisories/"
      },
      {
        "trust": 0.2,
        "url": "http://secunia.com/network_software_inspector_2/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5126/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11176/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11174/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11177/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/advisories/30054/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5125/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/11175/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5124/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5131/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/5129/"
      },
      {
        "trust": 0.1,
        "url": "http://secunia.com/product/10974/"
      },
      {
        "trust": 0.1,
        "url": "http://corporate.secunia.com/how_to_buy/38/vi/?ref=secadv"
      },
      {
        "trust": 0.1,
        "url": "https://www.juniper.net/alerts/viewalert.jsp?actionbtn=search\u0026txtalertnumber=psn-2007-12-008\u0026viewmod"
      }
    ],
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "PACKETSTORM",
        "id": "66123"
      },
      {
        "db": "PACKETSTORM",
        "id": "66130"
      },
      {
        "db": "PACKETSTORM",
        "id": "61855"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "db": "PACKETSTORM",
        "id": "66123"
      },
      {
        "db": "PACKETSTORM",
        "id": "66130"
      },
      {
        "db": "PACKETSTORM",
        "id": "61855"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2008-05-01T00:00:00",
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "date": "2008-05-01T00:00:00",
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "date": "2007-12-15T00:00:00",
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "date": "2007-12-14T00:00:00",
        "db": "BID",
        "id": "26869"
      },
      {
        "date": "2008-05-01T00:00:00",
        "db": "BID",
        "id": "28999"
      },
      {
        "date": "2008-05-23T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "date": "2008-05-08T17:30:50",
        "db": "PACKETSTORM",
        "id": "66123"
      },
      {
        "date": "2008-05-08T17:30:50",
        "db": "PACKETSTORM",
        "id": "66130"
      },
      {
        "date": "2007-12-18T00:56:59",
        "db": "PACKETSTORM",
        "id": "61855"
      },
      {
        "date": "2007-12-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "date": "2007-12-15T01:46:00",
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2009-06-09T00:00:00",
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "date": "2009-06-09T00:00:00",
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "date": "2011-04-29T00:00:00",
        "db": "VULHUB",
        "id": "VHN-29734"
      },
      {
        "date": "2008-05-05T13:46:00",
        "db": "BID",
        "id": "26869"
      },
      {
        "date": "2016-07-06T14:17:00",
        "db": "BID",
        "id": "28999"
      },
      {
        "date": "2008-11-20T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2008-001337"
      },
      {
        "date": "2007-12-14T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-200712-169"
      },
      {
        "date": "2024-11-21T00:39:59.370000",
        "db": "NVD",
        "id": "CVE-2007-6372"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "network",
    "sources": [
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "BGP implementations do not properly handle UPDATE messages",
    "sources": [
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      },
      {
        "db": "CERT/CC",
        "id": "VU#929656"
      }
    ],
    "trust": 1.6
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Design Error",
    "sources": [
      {
        "db": "BID",
        "id": "26869"
      },
      {
        "db": "BID",
        "id": "28999"
      }
    ],
    "trust": 0.6
  }
}

fkie_cve-2007-6372

Vulnerability from fkie_nvd

Published

2007-12-15 01:46

Modified

2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://secunia.com/advisories/28100	Vendor Advisory
cve@mitre.org	http://www.kb.cert.org/vuls/id/929656	US Government Resource
cve@mitre.org	http://www.osvdb.org/39157
cve@mitre.org	http://www.securityfocus.com/bid/26869
cve@mitre.org	http://www.securityfocus.com/bid/28999
cve@mitre.org	http://www.securitytracker.com/id?1019100
cve@mitre.org	http://www.vupen.com/english/advisories/2007/4223	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/28100	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/929656	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/39157
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/26869
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/28999
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1019100
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/4223	Vendor Advisory

Impacted products

Vendor	Product	Version
juniper	junos	7.3
juniper	junos	7.4
juniper	junos	7.5
juniper	junos	7.6
juniper	junos	8.0
juniper	junos	8.1
juniper	junos	8.2
juniper	junos	8.3
juniper	junos	8.4

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:juniper:junos:7.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F443DB8-1E98-4D66-A75D-DCC4716218E8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:7.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "E51EBFBB-9236-436F-AC05-C7AFD9452A73",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:7.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "851DD20A-9796-4B06-A9FF-C16D74310156",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:7.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "38C56079-E4AC-4CE2-805D-AB893F82070C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0EE5FF2-A12F-41EF-9A3D-66B471288BF8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:8.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "BB6086F9-431D-4A9D-BBFA-12A3A7FCE317",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:8.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "5C8EFF72-7F38-4B55-B449-F22801D7C18B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:8.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "195D3916-4B92-4A49-8988-20F9B9E9FF34",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:juniper:junos:8.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AD4416F-E655-4D37-A28E-0623AA031423",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad no especificada en Juniper JUNOS versiones 7.3 hasta 8.4, permite a los atacantes remotos causar una denegaci\u00f3n de servicio (bloqueo) por medio de paquetes BGP malformados, posiblemente paquetes BGP UPDATE que desencadenan un flapping de sesi\u00f3n."
    }
  ],
  "id": "CVE-2007-6372",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-12-15T01:46:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/28100"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/929656"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/39157"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/26869"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/28999"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1019100"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2007/4223"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/28100"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/929656"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/39157"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/26869"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/28999"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1019100"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.vupen.com/english/advisories/2007/4223"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2007-6372

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2007-6372

Aliases

CVE-2007-6372

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-6372",
    "description": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping.",
    "id": "GSD-2007-6372"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-6372"
      ],
      "details": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping.",
      "id": "GSD-2007-6372",
      "modified": "2023-12-13T01:21:38.447209Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-6372",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "39157",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/39157"
          },
          {
            "name": "1019100",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1019100"
          },
          {
            "name": "28100",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/28100"
          },
          {
            "name": "26869",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/26869"
          },
          {
            "name": "28999",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/28999"
          },
          {
            "name": "ADV-2007-4223",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/4223"
          },
          {
            "name": "VU#929656",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/929656"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:8.2:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:7.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:7.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:7.5:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:8.3:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:8.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:7.6:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:juniper:junos:8.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-6372"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-20"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "26869",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/26869"
            },
            {
              "name": "1019100",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1019100"
            },
            {
              "name": "28100",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/28100"
            },
            {
              "name": "39157",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/39157"
            },
            {
              "name": "VU#929656",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/929656"
            },
            {
              "name": "28999",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/28999"
            },
            {
              "name": "ADV-2007-4223",
              "refsource": "VUPEN",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/4223"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.8,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2011-04-29T04:00Z",
      "publishedDate": "2007-12-15T01:46Z"
    }
  }
}

ghsa-j2ww-2564-cmmg

Vulnerability from github

Published

2022-05-01 18:42

Modified

2022-05-01 18:42

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-6372"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-20"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-12-15T01:46:00Z",
    "severity": "HIGH"
  },
  "details": "Unspecified vulnerability in Juniper JUNOS 7.3 through 8.4 allows remote attackers to cause a denial of service (crash) via malformed BGP packets, possibly BGP UPDATE packets that trigger session flapping.",
  "id": "GHSA-j2ww-2564-cmmg",
  "modified": "2022-05-01T18:42:23Z",
  "published": "2022-05-01T18:42:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-6372"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/28100"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/929656"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/39157"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/26869"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/28999"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1019100"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/4223"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2007-6372 (GCVE-0-2007-6372)

Vulnerability from cvelistv5

var-200712-0088

Vulnerability from variot

fkie_cve-2007-6372

Vulnerability from fkie_nvd

gsd-2007-6372

Vulnerability from gsd

ghsa-j2ww-2564-cmmg

Vulnerability from github

Tags

Sightings

Nomenclature