Vulnerability Description
ZyXEL ZyWALL 10 before 3.50 allows remote attackers to cause a denial of service via an ARP packet with the firewall's IP address and an incorrect MAC address, which causes the firewall to disable the LAN interface.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Zyxel | Zywall10 | 3.20_wa0 |
References
- ftp://ftp.zyxel.com/public/zywall10/firmware/zywall10_V3.50%28WA.2%29C0_Standard
- http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0067.html
- http://www.iss.net/security_center/static/8436.phpVendor Advisory
- http://www.securityfocus.com/archive/1/261411Vendor Advisory
- http://www.securityfocus.com/bid/4272ExploitPatchVendor Advisory
- ftp://ftp.zyxel.com/public/zywall10/firmware/zywall10_V3.50%28WA.2%29C0_Standard
- http://archives.neohapsis.com/archives/vulnwatch/2002-q1/0067.html
- http://www.iss.net/security_center/static/8436.phpVendor Advisory
- http://www.securityfocus.com/archive/1/261411Vendor Advisory
- http://www.securityfocus.com/bid/4272ExploitPatchVendor Advisory
FAQ
What is CVE-2002-0438?
CVE-2002-0438 is a vulnerability with a CVSS score of 5.0 (MEDIUM). ZyXEL ZyWALL 10 before 3.50 allows remote attackers to cause a denial of service via an ARP packet with the firewall's IP address and an incorrect MAC address, which causes the firewall to disable the...
How severe is CVE-2002-0438?
CVE-2002-0438 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0438?
Check the references section above for vendor advisories and patch information. Affected products include: Zyxel Zywall10.