CVE-2009-0213

Unspecified vulnerability in the NETIO application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service (system crash) via unknown vectors, aka PD32021.

CVSS v2.0 7.8 HIGH

7.8^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://secunia.com/advisories/33837
http://www.kb.cert.org/vuls/id/337569	US Government Resource
http://www.scada-security.com/vulnerabilities/areva1.html	URL Repurposed
http://www.securityfocus.com/archive/1/500689/100/0/threaded
http://www.securityfocus.com/bid/33637

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:areva:e-terrahabitat::::::::
	cpe:2.3:a:areva:e-terrahabitat:5.5:::::::*
	cpe:2.3:a:areva:e-terrahabitat:5.6:::::::*

History

14 Feb 2024, 01:17

Type	Values Removed	Values Added
References	~~() http://www.scada-security.com/vulnerabilities/areva1.html -~~	() http://www.scada-security.com/vulnerabilities/areva1.html - URL Repurposed

Information

Published : 2009-02-08 22:30

Updated : 2024-02-14 01:17

NVD link : CVE-2009-0213

Mitre link : CVE-2009-0213

CVE.ORG link : CVE-2009-0213

JSON object : View

Products Affected

areva

e-terrahabitat

CWE

NVD-CWE-noinfo

{"id": "CVE-2009-0213", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": true, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-02-08T22:30:00.313", "references": [{"url": "http://secunia.com/advisories/33837", "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/337569", "tags": ["US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.scada-security.com/vulnerabilities/areva1.html", "tags": ["URL Repurposed"], "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/archive/1/500689/100/0/threaded", "source": "cret@cert.org"}, {"url": "http://www.securityfocus.com/bid/33637", "source": "cret@cert.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the NETIO application in AREVA e-terrahabitat 5.7 and earlier allows remote attackers to cause a denial of service (system crash) via unknown vectors, aka PD32021."}, {"lang": "es", "value": "Vulnerabilidad sin especificar en la aplicaci\u00f3n NETIO en AREVA e-terrahabitat v5.7 y anteriores, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda del sistema) a trav\u00e9s de vectores no especificados. Tambi\u00e9n conocidos como PD32021."}], "lastModified": "2024-02-14T01:17:43.863", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:areva:e-terrahabitat:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81433ED5-61A7-406A-BCEA-C0FB80B4B374", "versionEndIncluding": "5.7"}, {"criteria": "cpe:2.3:a:areva:e-terrahabitat:5.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A8C5CBA7-E0D6-4C2B-AD9F-16707B084C31"}, {"criteria": "cpe:2.3:a:areva:e-terrahabitat:5.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "00DA6AF7-707F-476F-B204-B6BD870762D0"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org", "evaluatorSolution": "Per http://www.kb.cert.org/vuls/id/337569\r\n\r\n\r\n\"III. Solution\r\nApply Patch\r\n\r\n\r\nUsers of e-terrahabitat version 5.5, 5.6, and 5.7 should apply the e-terrahabitat_560_P20081030_SEC patch immediately.\""}