Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0661

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0661
Last Modified 05 Sep 2008 04:39:02
Published 06 Aug 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0661

Summary

Integer signedness error in D-Link AirPlus DI-614+ running firmware 2.30 and earlier allows remote attackers to cause a denial of service (IP lease depletion) via a DHCP request with the LEASETIME option set to -1, which makes the DHCP lease valid for thirteen or more years.

Vulnerable Systems


References

XF - dlink-dhcp-request-dos(16531)

BID - 10621

BUGTRAQ - 20040629 Re: DLINK 614+ - SOHO routers, system DOS

OSVDB - 7294

SECUNIA - 12018

BUGTRAQ - 20040628 DLINK 614+ - SOHO routers, DHCP service DOS


Last Updated: 27 May 2016 10:38:42