Arris Cadant C3 CTMS IP Packet Denial Of Service Vulnerability
TITLE: Arris Cadant C3 CTMS IP Packet Denial Of Service Vulnerability
CLASS: Failure to Handle Exceptional Conditions
CVE: CVE-2007-2796
REMOTE: Yes
LOCAL: No
PUBLISHED: Jun 11 2007 12:00AM
UPDATE: Jun 13 2007 05:49AM
CREDIT: The reporter of this issue wishes to remain anonymous.
VULNERABLE:
ARRIS Cadant C3 CMTS 0NOT VULNERABLE:
Vai alla pagina originale su Security Focus
Discussion
Arris Cadant C3 CMTS is prone to a denial-of-service vulnerability because it fails to adequately handle malformed IP packets.
An attacker can exploit this issue to crash the affected device, denying service to legitimate users.
Exploit
Currently we are not aware of any exploits for this issue. If you feel we are in error or if you are aware of more recent information, please mail us at: mailto:vuldb@securityfocus.com.
Solution
Solution:
The vendor released an update to address this issue. Please contact the vendor for information on how to obtain and apply this update.
References
References:
- Cadant C3 CMTS Homepage (ARRIS)
- ZDI-07-036: Arris Cadant C3 CMTS Remote DoS Vulnerability (Zero Day Initiative)
- ZDI-07-036: Arris Cadant C3 CMTS Remote DoS Vulnerability (ZDI)