CVE-2008-2172 - Vulnerability Details - OpenCVE

Unspecified vulnerability in Hitachi GR routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Hitachi	Gr2000 Gr3000 Gr4000

Configuration 1 [-]

OR	cpe:2.3:h:hitachi:gr2000::::::::
	cpe:2.3:h:hitachi:gr2000:1b:::::::*
	cpe:2.3:h:hitachi:gr2000:2b:::::::*
	cpe:2.3:h:hitachi:gr2000:2b\+:::::::*
	cpe:2.3:h:hitachi:gr2000:bh:::::::*
	cpe:2.3:h:hitachi:gr3000::::::::
	cpe:2.3:h:hitachi:gr4000::::::::

No data.

References

Link	Providers
http://secunia.com/advisories/30028
http://www.kb.cert.org/vuls/id/929656
http://www.kb.cert.org/vuls/id/MIMG-79UV2A
http://www.securityfocus.com/bid/28999
http://www.vupen.com/english/advisories/2008/1405

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-05-13T22:00:00

Updated: 2024-08-07T08:49:59.051Z

Reserved: 2008-05-13T00:00:00

Link: CVE-2008-2172

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-05-13T22:20:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-2172

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-05-06T00:00:00", "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Hitachi GR routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2009-02-26T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "ADV-2008-1405", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1405"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A"}, {"name": "30028", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30028"}, {"name": "28999", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/28999"}, {"name": "VU#929656", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/929656"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-2172", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unspecified vulnerability in Hitachi GR routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "ADV-2008-1405", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1405"}, {"name": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A", "refsource": "CONFIRM", "url": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A"}, {"name": "30028", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30028"}, {"name": "28999", "refsource": "BID", "url": "http://www.securityfocus.com/bid/28999"}, {"name": "VU#929656", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/929656"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T08:49:59.051Z"}, "title": "CVE Program Container", "references": [{"name": "ADV-2008-1405", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2008/1405"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A"}, {"name": "30028", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/30028"}, {"name": "28999", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/28999"}, {"name": "VU#929656", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/929656"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-2172", "datePublished": "2008-05-13T22:00:00", "dateReserved": "2008-05-13T00:00:00", "dateUpdated": "2024-08-07T08:49:59.051Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:hitachi:gr2000:*:*:*:*:*:*:*:*", "matchCriteriaId": "A48EF6BB-67BB-4FB8-A8AE-4D7CD17E6BE4", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr2000:1b:*:*:*:*:*:*:*", "matchCriteriaId": "22F02BA5-0229-44CC-99D7-FF31CA9C663A", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr2000:2b:*:*:*:*:*:*:*", "matchCriteriaId": "9D6C86A9-6415-4A3A-A55F-183613580279", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr2000:2b\\+:*:*:*:*:*:*:*", "matchCriteriaId": "ECCC842D-D459-4049-A096-1900DD621A20", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr2000:bh:*:*:*:*:*:*:*", "matchCriteriaId": "8670F404-9160-44E3-AF45-28ADB750388B", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr3000:*:*:*:*:*:*:*:*", "matchCriteriaId": "6BE18FB6-E292-47B2-8FA2-74EE122C2B02", "vulnerable": true}, {"criteria": "cpe:2.3:h:hitachi:gr4000:*:*:*:*:*:*:*:*", "matchCriteriaId": "D377F14F-44AE-4D74-8C14-BA73AC77FDB7", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in Hitachi GR routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related issue to CVE-2007-6372."}, {"lang": "es", "value": "Vulnerabilidad no especificada en los routers Hitachi GR. Permite a atacantes remotos causar denegaci\u00f3n de servicio (sesi\u00f3n cerrada) a trav\u00e9s de mensajes BGP UPDATE manipulados y cambio continuo de rutas posiblemente un problema relacionado con CVE-2007-6372."}], "id": "CVE-2008-2172", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-05-13T22:20:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30028"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/929656"}, {"source": "cve@mitre.org", "url": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/28999"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1405"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30028"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/929656"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.kb.cert.org/vuls/id/MIMG-79UV2A"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/28999"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.vupen.com/english/advisories/2008/1405"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-20"}], "source": "nvd@nist.gov", "type": "Primary"}]}