Vulnerability Description
The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from unexpected locations.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Alliedtelesyn | At-9000 24 Ethernetswitch | All versions |
References
- http://secunia.com/advisories/23451
- http://secunia.com/advisories/23590
- http://www.securityfocus.com/archive/1/454630/100/0/threaded
- http://www.securityfocus.com/bid/21628
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30924
- http://secunia.com/advisories/23451
- http://secunia.com/advisories/23590
- http://www.securityfocus.com/archive/1/454630/100/0/threaded
- http://www.securityfocus.com/bid/21628
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30924
FAQ
What is CVE-2006-6717?
CVE-2006-6717 is a vulnerability with a CVSS score of 7.5 (HIGH). The Allied Telesis AT-9000/24 Ethernet switch accepts management packets from arbitrary VLANs, contrary to the documentation, which allows remote attackers to conduct attacks against the switch from u...
How severe is CVE-2006-6717?
CVE-2006-6717 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6717?
Check the references section above for vendor advisories and patch information. Affected products include: Alliedtelesyn At-9000 24 Ethernetswitch.