PT-2009-6419 · Internet Initiative Japan · Seil/X1+2

Published

2009-12-10

Updated

2017-08-17

CVE-2009-4293

CVSS v2.0

7.1

High

Vector

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Internet Initiative Japan SEIL/X1, SEIL/X2, and SEIL/B1 firmware versions 2.30 through 2.51

Description The issue allows remote attackers to cause a denial of service, resulting in a system restart, by sending crafted GRE packets when NAT is enabled.

Recommendations For versions 2.30 through 2.51, consider disabling NAT as a temporary workaround until a patch is available. Restrict access to the network to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-16

Related Identifiers

CVE-2009-4293

Affected Products

Seil/B1

Seil/X1

Seil/X2

PT-2009-6419 · Internet Initiative Japan · Seil/X1+2

CVE-2009-4293

Weakness Enumeration

Related Identifiers

Affected Products

References · 8