Details of VAR-200505-0723

ID

VAR-200505-0723

CVE

CVE-2005-1649

TITLE

Microsoft Windows Illegal in IPv6 Service disruption due to packets (Dos) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2005-000332

DESCRIPTION

The IPv6 support in Windows XP SP2, 2003 Server SP1, and Longhorn, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destination and source address and port, a variant of CVE-2005-0688 and a reoccurrence of the "Land" vulnerability (CVE-1999-0016). When a packet of this type is handled, an infinite loop is initiated and the affected system halts. A remote attacker may exploit this issue to deny service for legitimate users

Trust: 1.89

sources: NVD: CVE-2005-1649 // JVNDB: JVNDB-2005-000332 // BID: 13658

AFFECTED PRODUCTS

vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	datacenter_64-bit	Trust: 1.6
vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	r2	Trust: 1.6
vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	standard	Trust: 1.6
vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	enterprise	Trust: 1.6
vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	enterprise_64-bit	Trust: 1.6
vendor:	microsoft	model:	windows 2003 server	scope:	eq	version:	web	Trust: 1.0
vendor:	microsoft	model:	windows xp	scope:	eq	version:	*	Trust: 1.0
vendor:	microsoft	model:	windows server 2003	scope:	-	version:	-	Trust: 0.8
vendor:	microsoft	model:	windows xp	scope:	eq	version:	sp3	Trust: 0.8
vendor:	microsoft	model:	windows xp home sp1	scope:	-	version:	-	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	eq	version:	2.1	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.01	Trust: 0.3
vendor:	microsoft	model:	windows nt workstation sp3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows server standard edition	scope:	eq	version:	2003x64	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	ne	version:	1.3.1	Trust: 0.3
vendor:	linux	model:	kernel	scope:	eq	version:	2.0.31	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.2.5	Trust: 0.3
vendor:	cisco	model:	ios aa	scope:	ne	version:	11.1.15	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.0	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.10	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	ne	version:	2.2.6	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.0	Trust: 0.3
vendor:	microsoft	model:	windows xp professional	scope:	-	version:	-	Trust: 0.3
vendor:	microsoft	model:	windows nt enterprise server sp4	scope:	ne	version:	4.0	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	ne	version:	3.0	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.34	Trust: 0.3
vendor:	microsoft	model:	windows nt workstation sp2	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	ios f	scope:	ne	version:	11.2.4	Trust: 0.3
vendor:	cisco	model:	ios bt	scope:	ne	version:	11.0.12	Trust: 0.3
vendor:	microsoft	model:	windows nt workstation sp4	scope:	ne	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition itanium	scope:	eq	version:	20030	Trust: 0.3
vendor:	avaya	model:	modular messaging	scope:	eq	version:	3.0	Trust: 0.3
vendor:	microsoft	model:	windows xp tablet pc edition sp1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios ia	scope:	ne	version:	11.1.15	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	ne	version:	1.3	Trust: 0.3
vendor:	microsoft	model:	windows xp professional edition	scope:	eq	version:	x64	Trust: 0.3
vendor:	microsoft	model:	windows xp tablet pc edition	scope:	-	version:	-	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	ne	version:	3.1	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.1.x	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.2	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.1	Trust: 0.3
vendor:	microsoft	model:	windows xp 64-bit edition	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	10.3.16	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition itanium sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.38	Trust: 0.3
vendor:	microsoft	model:	windows server standard edition sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	microsoft	model:	windows xp	scope:	eq	version:	0	Trust: 0.3
vendor:	novell	model:	netware	scope:	eq	version:	4.1	Trust: 0.3
vendor:	microsoft	model:	windows server standard edition sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	eq	version:	2.0	Trust: 0.3
vendor:	microsoft	model:	windows xp media center edition	scope:	-	version:	-	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.36	Trust: 0.3
vendor:	microsoft	model:	windows xp media center edition sp2	scope:	-	version:	-	Trust: 0.3
vendor:	microsoft	model:	windows nt workstation	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	10.3	Trust: 0.3
vendor:	cisco	model:	ios bt	scope:	ne	version:	11.0.17	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition itanium	scope:	eq	version:	20030	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	ne	version:	3.x	Trust: 0.3
vendor:	microsoft	model:	windows nt enterprise server sp1	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	microsoft	model:	windows nt enterprise server sp3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	11.2.10	Trust: 0.3
vendor:	microsoft	model:	windows nt terminal server sp1	scope:	eq	version:	4.0	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.1.5	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	11.1.7	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	eq	version:	2.0.1	Trust: 0.3
vendor:	microsoft	model:	windows server web edition sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	microsoft	model:	windows nt enterprise server sp2	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows xp tablet pc edition sp2	scope:	-	version:	-	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition itanium sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.2	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.2.3	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	eq	version:	1.1	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.33	Trust: 0.3
vendor:	microsoft	model:	windows nt terminal server sp3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	sco	model:	open desktop	scope:	eq	version:	3.0	Trust: 0.3
vendor:	microsoft	model:	windows xp embedded sp1	scope:	-	version:	-	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.1.6.1	Trust: 0.3
vendor:	cisco	model:	ios ia	scope:	ne	version:	11.1.9	Trust: 0.3
vendor:	microsoft	model:	windows xp embedded	scope:	-	version:	-	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.16	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	ne	version:	1.3.2	Trust: 0.3
vendor:	cisco	model:	ios aa	scope:	ne	version:	11.1.7	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	11.0.17	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition itanium sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	microsoft	model:	windows nt enterprise server	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition	scope:	eq	version:	2003	Trust: 0.3
vendor:	microsoft	model:	windows nt terminal server	scope:	eq	version:	4.0	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	9.0	Trust: 0.3
vendor:	sco	model:	unixware	scope:	eq	version:	2.1	Trust: 0.3
vendor:	microsoft	model:	windows xp professional sp1	scope:	-	version:	-	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	ne	version:	2.2.2	Trust: 0.3
vendor:	microsoft	model:	windows server standard edition	scope:	eq	version:	2003	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	11.2.4	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition	scope:	eq	version:	2003x64	Trust: 0.3
vendor:	cisco	model:	ios a	scope:	ne	version:	10.3.19	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.1	Trust: 0.3
vendor:	microsoft	model:	windows xp gold	scope:	eq	version:	0	Trust: 0.3
vendor:	cisco	model:	ios f1	scope:	ne	version:	11.2.4	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.35	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	11.0	Trust: 0.3
vendor:	microsoft	model:	windows xp home	scope:	-	version:	-	Trust: 0.3
vendor:	sco	model:	cmw+	scope:	eq	version:	3.0	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.2	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	ne	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows server web edition	scope:	eq	version:	2003	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.1	Trust: 0.3
vendor:	cisco	model:	ios ca	scope:	ne	version:	11.1.15	Trust: 0.3
vendor:	microsoft	model:	windows xp media center edition sp1	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	ios/700	scope:	eq	version:	1.0	Trust: 0.3
vendor:	linux	model:	kernel	scope:	eq	version:	2.0.30	Trust: 0.3
vendor:	sun	model:	sunos	scope:	eq	version:	4.1.4	Trust: 0.3
vendor:	cisco	model:	ios	scope:	eq	version:	11.1	Trust: 0.3
vendor:	microsoft	model:	windows nt server sp3	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows	scope:	eq	version:	95	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.2.10	Trust: 0.3
vendor:	cisco	model:	catalyst supervisor software	scope:	ne	version:	29xx2.4.401	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.37	Trust: 0.3
vendor:	sun	model:	sunos u1	scope:	eq	version:	4.1.3	Trust: 0.3
vendor:	microsoft	model:	windows nt	scope:	eq	version:	3.5.1	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.24	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.0	Trust: 0.3
vendor:	marconi	model:	atm switch	scope:	eq	version:	6.1.1	Trust: 0.3
vendor:	linux	model:	kernel	scope:	ne	version:	2.0.32	Trust: 0.3
vendor:	microsoft	model:	windows nt server sp1	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows nt terminal server sp4	scope:	ne	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows xp professional sp2	scope:	-	version:	-	Trust: 0.3
vendor:	microsoft	model:	windows xp home sp2	scope:	-	version:	-	Trust: 0.3
vendor:	cisco	model:	catalyst supervisor software	scope:	ne	version:	29xx2.1.1102	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.2.1	Trust: 0.3
vendor:	microsoft	model:	windows xp 64-bit edition sp1	scope:	-	version:	-	Trust: 0.3
vendor:	sco	model:	open server	scope:	eq	version:	5.0	Trust: 0.3
vendor:	microsoft	model:	windows xp 64-bit edition version sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	ne	version:	2.2.8	Trust: 0.3
vendor:	microsoft	model:	windows nt workstation sp1	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows nt server sp2	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	ios p	scope:	ne	version:	11.2.9	Trust: 0.3
vendor:	marconi	model:	atm switch	scope:	eq	version:	7.0.1	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.2.4	Trust: 0.3
vendor:	microsoft	model:	windows nt server sp4	scope:	ne	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	windows nt server	scope:	eq	version:	4.0	Trust: 0.3
vendor:	cisco	model:	ios	scope:	ne	version:	11.1.15	Trust: 0.3
vendor:	microsoft	model:	windows server enterprise edition	scope:	eq	version:	2003	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.1.6	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.20	Trust: 0.3
vendor:	bsdi	model:	bsd/os	scope:	ne	version:	4.0.1	Trust: 0.3
vendor:	microsoft	model:	windows xp 64-bit edition version	scope:	eq	version:	2003	Trust: 0.3
vendor:	cisco	model:	ios ca	scope:	ne	version:	11.1.7	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition itanium sp1	scope:	eq	version:	2003	Trust: 0.3
vendor:	netbsd	model:	netbsd	scope:	eq	version:	1.2	Trust: 0.3
vendor:	microsoft	model:	windows nt terminal server sp2	scope:	eq	version:	4.0	Trust: 0.3
vendor:	freebsd	model:	freebsd	scope:	eq	version:	2.1x	Trust: 0.3
vendor:	microsoft	model:	windows server datacenter edition	scope:	eq	version:	2003x64	Trust: 0.3
vendor:	microsoft	model:	windows server web edition sp1 beta	scope:	eq	version:	20031	Trust: 0.3
vendor:	hp	model:	hp-ux	scope:	eq	version:	10.30	Trust: 0.3

sources: BID: 13658 // JVNDB: JVNDB-2005-000332 // NVD: CVE-2005-1649 // CNNVD: CNNVD-200505-1102

CVSS

SEVERITY

CVSSV2

CVSSV3

NVD:	CVE-2005-1649
value:	MEDIUM
Trust: 1.8
CNNVD:	CNNVD-200505-1102
value:	MEDIUM
Trust: 0.6

NVD:
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	FALSE
obtainAllPrivilege:	FALSE
obtainUserPrivilege:	FALSE
obtainOtherPrivilege:	FALSE
userInteractionRequired:	FALSE
version:	2.0
Trust: 1.0
NVD:	CVE-2005-1649
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	NONE
impactScore:	NONE
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.8

sources: JVNDB: JVNDB-2005-000332 // NVD: CVE-2005-1649 // CNNVD: CNNVD-200505-1102

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2005-1649

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200505-1102

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-200505-1102

CONFIGURATIONS

sources: NVD: CVE-2005-1649

PATCH

title:

Top Page

url:

http://www.microsoft.com/ja/jp/default.aspx

Trust: 0.8

sources: JVNDB: JVNDB-2005-000332

EXTERNAL IDS

db:	NVD	id:	CVE-2005-1649	Trust: 2.7
db:	BID	id:	13658	Trust: 2.7
db:	VUPEN	id:	ADV-2005-0559	Trust: 1.6
db:	JVNDB	id:	JVNDB-2005-000332	Trust: 0.8
db:	NTBUGTRAQ	id:	20050516 WINDOWS (XP, 2K3, LONGHORN) IS VULNERABLE TO IPV6 LAND ATTACK.	Trust: 0.6
db:	CNNVD	id:	CNNVD-200505-1102	Trust: 0.6

sources: BID: 13658 // JVNDB: JVNDB-2005-000332 // NVD: CVE-2005-1649 // CNNVD: CNNVD-200505-1102

REFERENCES

url:	http://www.securityfocus.com/bid/13658	Trust: 2.4
url:	http://www.ntbugtraq.com/default.aspx?pid=36&sid=1&a2=ind0505&l=ntbugtraq&p=r409&d=0&f=n&h=0&o=d&t=0	Trust: 1.6
url:	http://www.frsirt.com/english/advisories/2005/0559	Trust: 1.4
url:	http://www.vupen.com/english/advisories/2005/0559	Trust: 1.0
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2005-1649	Trust: 0.8
url:	http://nvd.nist.gov/nvd.cfm?cvename=cve-2005-1649	Trust: 0.8
url:	http://support.avaya.com/elmodocs2/security/asa-2006-217.htm	Trust: 0.3
url:	http://www.microsoft.com/technet/security/bulletin/ms05-019.mspx	Trust: 0.3
url:	http://www.microsoft.com/technet/security/bulletin/ms06-064.mspx	Trust: 0.3
url:	http://support.microsoft.com/support/kb/articles/q165/0/05.asp	Trust: 0.3
url:	http://support.microsoft.com/support/kb/articles/q177/5/39.asp	Trust: 0.3
url:	http://support.novell.com/cgi-bin/search/tidfinder.cgi?2932511	Trust: 0.3
url:	http://www.cisco.com/warp/public/770/land-pub.shtml#iosvers	Trust: 0.3
url:	http://www.securityfocus.com/archive/1/392354	Trust: 0.3
url:	/archive/1/392642	Trust: 0.3
url:	/archive/1/393045	Trust: 0.3
url:	/archive/1/400188	Trust: 0.3
url:	/archive/1/392354	Trust: 0.3

sources: BID: 13658 // JVNDB: JVNDB-2005-000332 // NVD: CVE-2005-1649 // CNNVD: CNNVD-200505-1102

CREDITS

Konrad Malewski※ koyot@moon.ondraszek.ds.polsl.gliwice.pl

Trust: 0.6

sources: CNNVD: CNNVD-200505-1102

SOURCES

db:	BID	id:	13658
db:	JVNDB	id:	JVNDB-2005-000332
db:	NVD	id:	CVE-2005-1649
db:	CNNVD	id:	CNNVD-200505-1102

LAST UPDATE DATE

2023-12-18T11:51:36.418000+00:00

SOURCES UPDATE DATE

db:	BID	id:	13658	date:	2016-07-06T14:40:00
db:	JVNDB	id:	JVNDB-2005-000332	date:	2007-04-01T00:00:00
db:	NVD	id:	CVE-2005-1649	date:	2017-01-20T02:59:01.120
db:	CNNVD	id:	CNNVD-200505-1102	date:	2005-10-25T00:00:00

SOURCES RELEASE DATE

db:	BID	id:	13658	date:	2005-05-17T00:00:00
db:	JVNDB	id:	JVNDB-2005-000332	date:	2007-04-01T00:00:00
db:	NVD	id:	CVE-2005-1649	date:	2005-05-18T04:00:00
db:	CNNVD	id:	CNNVD-200505-1102	date:	1997-11-13T00:00:00