CVE-2014-7256

Name of the Vulnerable Software and Affected Versions Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers versions 1.00 through 4.62 SEIL/x86 Fuji versions 1.00 through 3.22 SEIL/X1 versions 1.00 through 4.62 SEIL/X2 versions 1.00 through 4.62 SEIL/B1 versions 1.00 through 4.62 SEIL/Turbo versions 1.82 through 2.18 SEIL/neu 2FE Plus versions 1.82 through 2.18

Description The issue allows remote attackers to cause a denial of service, resulting in a restart, by sending crafted packets. Specifically, this can be achieved via (a) GRE or (b) MPPE packets.

Recommendations For SEIL/x86 Fuji versions 1.00 through 3.22, update to a version outside of this range to resolve the issue. For SEIL/X1, SEIL/X2, and SEIL/B1 versions 1.00 through 4.62, update to a version outside of this range to resolve the issue. For SEIL/Turbo versions 1.82 through 2.18, update to a version outside of this range to resolve the issue. For SEIL/neu 2FE Plus versions 1.82 through 2.18, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to GRE and MPPE packets to minimize the risk of exploitation.