Details of VAR-201705-1684

ID

VAR-201705-1684

CVE

CVE-2016-8209

TITLE

Brocade NetIron Service disruption in the management module (DoS) Vulnerabilities

Trust: 0.8

sources: JVNDB: JVNDB-2016-008579

DESCRIPTION

Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module. Brocade NetIron OS is an operating system developed by Brocade Communications Systems (Brocade) in the United States that runs on switches and routers. A security vulnerability exists in Brocade NetIron versions 05.8.00 to 06.1.00. The vulnerability is caused by the program not properly detecting abnormal conditions

Trust: 1.71

sources: NVD: CVE-2016-8209 // JVNDB: JVNDB-2016-008579 // VULHUB: VHN-97029

AFFECTED PRODUCTS

vendor:	brocade	model:	netiron xmr series	scope:	eq	version:	-	Trust: 1.6
vendor:	brocade	model:	netiron cer series	scope:	eq	version:	-	Trust: 1.6
vendor:	brocade	model:	netiron ces series	scope:	eq	version:	-	Trust: 1.6
vendor:	brocade	model:	netiron mlx series	scope:	eq	version:	-	Trust: 1.6
vendor:	brocade	model:	cer series	scope:	-	version:	-	Trust: 0.8
vendor:	brocade	model:	ces series	scope:	-	version:	-	Trust: 0.8
vendor:	brocade	model:	netiron mlx series	scope:	-	version:	-	Trust: 0.8
vendor:	brocade	model:	netiron xmr series	scope:	-	version:	-	Trust: 0.8

sources: JVNDB: JVNDB-2016-008579 // CNNVD: CNNVD-201705-366 // NVD: CVE-2016-8209

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2016-8209
value:	HIGH
Trust: 1.0
NVD:	CVE-2016-8209
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201705-366
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-97029
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2016-8209
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-97029
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2016-8209
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-97029 // JVNDB: JVNDB-2016-008579 // CNNVD: CNNVD-201705-366 // NVD: CVE-2016-8209

PROBLEMTYPE DATA

problemtype:

CWE-754

Trust: 1.9

sources: VULHUB: VHN-97029 // JVNDB: JVNDB-2016-008579 // NVD: CVE-2016-8209

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201705-366

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201705-366

CONFIGURATIONS

sources: JVNDB: JVNDB-2016-008579

PATCH

title:	BSA-2017-315	url:	https://www.brocade.com/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2017-315.htm	Trust: 0.8
title:	Brocade NetIron Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=69917	Trust: 0.6

sources: JVNDB: JVNDB-2016-008579 // CNNVD: CNNVD-201705-366

EXTERNAL IDS

db:	NVD	id:	CVE-2016-8209	Trust: 2.5
db:	SECTRACK	id:	1038402	Trust: 1.1
db:	JVNDB	id:	JVNDB-2016-008579	Trust: 0.8
db:	CNNVD	id:	CNNVD-201705-366	Trust: 0.7
db:	VULHUB	id:	VHN-97029	Trust: 0.1

sources: VULHUB: VHN-97029 // JVNDB: JVNDB-2016-008579 // CNNVD: CNNVD-201705-366 // NVD: CVE-2016-8209

REFERENCES

url:	https://www.brocade.com/content/dam/common/documents/content-types/security-bulletin/brocade-security-advisory-2017-315.htm	Trust: 1.7
url:	http://www.securitytracker.com/id/1038402	Trust: 1.1
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-8209	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2016-8209	Trust: 0.8

sources: VULHUB: VHN-97029 // JVNDB: JVNDB-2016-008579 // CNNVD: CNNVD-201705-366 // NVD: CVE-2016-8209

SOURCES

db:	VULHUB	id:	VHN-97029
db:	JVNDB	id:	JVNDB-2016-008579
db:	CNNVD	id:	CNNVD-201705-366
db:	NVD	id:	CVE-2016-8209

LAST UPDATE DATE

2025-04-20T23:23:46.334000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-97029	date:	2017-07-08T00:00:00
db:	JVNDB	id:	JVNDB-2016-008579	date:	2017-06-13T00:00:00
db:	CNNVD	id:	CNNVD-201705-366	date:	2017-05-09T00:00:00
db:	NVD	id:	CVE-2016-8209	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-97029	date:	2017-05-08T00:00:00
db:	JVNDB	id:	JVNDB-2016-008579	date:	2017-06-13T00:00:00
db:	CNNVD	id:	CNNVD-201705-366	date:	2017-05-09T00:00:00
db:	NVD	id:	CVE-2016-8209	date:	2017-05-08T18:29:00.247