Sign-up

ID

VAR-201311-0198


CVE

CVE-2013-5998


TITLE

D-Link DES-3800 Series vulnerable to denial-of-service (DoS)

Trust: 0.8

sources: JVNDB: JVNDB-2013-000110

DESCRIPTION

Unspecified vulnerability in the Web manager implementation on D-Link Japan DES-3800 devices with firmware before R4.50B58 allows remote attackers to cause a denial of service (device hang) via unknown vectors, a different vulnerability than CVE-2013-5997. DES-3800 Series provided by D-Link Japan contains a denial-of-service (DoS) vulnerability due to an issue in the Web manager function. Note that this vulnerability is different from JVN#65312543. Hisashi Kojima, Masahiro Nakada of Fujitsu Laboratories Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.A remote attacker may cause the product to stop responding. The D-Link DES-3800 is a three-layer 100M network managed switch. D-Link DES-3800 Series are prone to a denial-of-service vulnerability

Trust: 2.52

sources: NVD: CVE-2013-5998 // JVNDB: JVNDB-2013-000110 // CNVD: CNVD-2013-14706 // BID: 63869 // VULHUB: VHN-66000

IOT TAXONOMY

category:['IoT', 'Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2013-14706

AFFECTED PRODUCTS

vendor:dlinkmodel:des-3800scope:eqversion:4.50

Trust: 1.6

vendor:dlinkmodel:des-3800scope:eqversion:4.00

Trust: 1.6

vendor:dlinkmodel:des-3800scope:eqversion:*

Trust: 1.0

vendor:d linkmodel:des-3800scope:eqversion:series firmware prior to r4.50b58

Trust: 0.8

vendor:d linkmodel:des-3800scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2013-14706 // JVNDB: JVNDB-2013-000110 // CNNVD: CNNVD-201311-363 // NVD: CVE-2013-5998

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-5998
value: HIGH

Trust: 1.0

IPA: JVNDB-2013-000110
value: HIGH

Trust: 0.8

CNVD: CNVD-2013-14706
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201311-363
value: HIGH

Trust: 0.6

VULHUB: VHN-66000
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2013-5998
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

IPA: JVNDB-2013-000110
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

CNVD: CNVD-2013-14706
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-66000
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2013-14706 // VULHUB: VHN-66000 // JVNDB: JVNDB-2013-000110 // CNNVD: CNNVD-201311-363 // NVD: CVE-2013-5998

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2013-5998

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201311-363

TYPE

Design Error

Trust: 0.3

sources: BID: 63869

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-000110

PATCH
title:DES-3800 Series - DES-3828url:http://www.dlink-jp.com/product/des-3828
Trust: 0.8
title:DES-3800 Series - DES-3828Purl:http://www.dlink-jp.com/product/des-3828p
Trust: 0.8
title:DES-3800 Series - DES-3828DCurl:http://www.dlink-jp.com/product/des-3828dc
Trust: 0.8
title:DES-3800 Series - DES-3852url:http://www.dlink-jp.com/product/des-3852
Trust: 0.8
title:D-Link DES-3800 Series WEB Management Patch for Remote Denial of Service Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/41319
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2013-14706 // 
            
            
            
            JVNDB: JVNDB-2013-000110

EXTERNAL IDS
db:NVDid:CVE-2013-5998
Trust: 3.4
db:JVNid:JVN28812735
Trust: 3.1
db:JVNDBid:JVNDB-2013-000110
Trust: 3.1
db:BIDid:63869
Trust: 1.0
db:CNNVDid:CNNVD-201311-363
Trust: 0.7
db:CNVDid:CNVD-2013-14706
Trust: 0.6
db:JVNid:JVN#28812735
Trust: 0.6
db:VULHUBid:VHN-66000
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2013-14706 // 
            
            
            
            VULHUB: VHN-66000 // 
            
            
            
            BID: 63869 // 
            
            
            
            JVNDB: JVNDB-2013-000110 // 
            
            
            
            CNNVD: CNNVD-201311-363 // 
            
            
            
            NVD: CVE-2013-5998

REFERENCES
url:http://jvn.jp/en/jp/jvn28812735/index.html
Trust: 3.1
url:http://jvndb.jvn.jp/jvndb/jvndb-2013-000110
Trust: 2.3
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-5998
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-5998
Trust: 0.8
sources:
            
            
            CNVD: CNVD-2013-14706 // 
            
            
            
            VULHUB: VHN-66000 // 
            
            
            
            JVNDB: JVNDB-2013-000110 // 
            
            
            
            CNNVD: CNNVD-201311-363 // 
            
            
            
            NVD: CVE-2013-5998

CREDITS
Hisashi Kojima and Masahiro Nakada of Fujitsu Laboratories
Trust: 0.3
sources:
            
            
            BID: 63869

SOURCES
db:CNVDid:CNVD-2013-14706
db:VULHUBid:VHN-66000
db:BIDid:63869
db:JVNDBid:JVNDB-2013-000110
db:CNNVDid:CNNVD-201311-363
db:NVDid:CVE-2013-5998

LAST UPDATE DATE
2025-04-11T23:20:34.015000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-14706date:2013-11-26T00:00:00
db:VULHUBid:VHN-66000date:2014-03-05T00:00:00
db:BIDid:63869date:2013-11-22T00:00:00
db:JVNDBid:JVNDB-2013-000110date:2013-11-26T00:00:00
db:CNNVDid:CNNVD-201311-363date:2013-11-29T00:00:00
db:NVDid:CVE-2013-5998date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CNVDid:CNVD-2013-14706date:2013-11-26T00:00:00
db:VULHUBid:VHN-66000date:2013-11-22T00:00:00
db:BIDid:63869date:2013-11-22T00:00:00
db:JVNDBid:JVNDB-2013-000110date:2013-11-22T00:00:00
db:CNNVDid:CNNVD-201311-363date:2013-11-29T00:00:00
db:NVDid:CVE-2013-5998date:2013-11-22T19:55:09.467