MidnightBSD

Advisories for lucent

CVE-1999-0060 MEDIUM

Attackers can cause a denial of service in Ascend MAX and Pipeline routers with a malformed packet to the discard port, which is used by the Java Configurator tool.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent ascend_max_router 4.0
lucent ascend_max_router 1.0
lucent ascend_tnt_router 2.0
lucent ascend_pipeline_router 3.0
lucent ascend_pipeline_router 2.0
lucent ascend_max_router 2.0
lucent ascend_max_router 3.0
lucent ascend_pipeline_router 5.0
lucent ascend_max_router 5.0
lucent ascend_pipeline_router 1.0
lucent ascend_tnt_router 1.0
lucent ascend_pipeline_router 6.0
lucent ascend_pipeline_router 4.0
CVE-1999-0221 MEDIUM

Denial of service of Ascend routers through port 150 (remote administration).

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent ascend_routers *
CVE-2001-0160 MEDIUM

Lucent/ORiNOCO WaveLAN cards generate predictable Initialization Vector (IV) values for the Wireless Encryption Protocol (WEP) which allows remote attackers to quickly compile information that will let them decrypt messages.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent wavelan *
orinoco orinoco_wavelan *
CVE-2001-0534 HIGH

Multiple buffer overflows in RADIUS daemon radiusd in (1) Merit 3.6b and (2) Lucent 2.1-2 RADIUS allow remote attackers to cause a denial of service or execute arbitrary commands.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
merit radius 3.6b
lucent radius 2.1.2
CVE-2001-0618 HIGH

Orinoco RG-1000 wireless Residential Gateway uses the last 5 digits of the 'Network Name' or SSID as the default Wired Equivalent Privacy (WEP) encryption key. Since the SSID occurs in the clear during communications, a remote attacker could determine the WEP key and decrypt RG-1000 traffic.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent orinoco_rg-1000 *
CVE-2001-0619 HIGH

The Lucent Closed Network protocol can allow remote attackers to join Closed Network networks which they do not have access to. The 'Network Name' or SSID, which is used as a shared secret to join the network, is transmitted in the clear.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent orinoco *
CVE-2001-1081 HIGH

Format string vulnerabilities in Livingston/Lucent RADIUS before 2.1.va.1 may allow local or remote attackers to cause a denial of service and possibly execute arbitrary code via format specifiers that are injected into log messages.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent radius 2.1.2
simon_horms radius 2.1_2
CVE-2001-1082 MEDIUM

Directory traversal vulnerability in Livingston/Lucent RADIUS before 2.1.va.1 may allow attackers to read arbitrary files via a .. (dot dot) attack.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent radius 2.1.2
simon_horms radius 2.1_2
CVE-2001-1376 HIGH

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
ascend radius 1.16
lucent radius 2.0
icradius icradius 0.16
icradius icradius 0.17
icradius icradius 0.17b
openradius openradius 0.9.2
yard_radius yard_radius 1.0.18
miquel_van_smoorenburg_cistron radius 1.6_.0
miquel_van_smoorenburg_cistron radius 1.6.1
yard_radius_project yard_radius 1.0.16
gnu radius 0.94
miquel_van_smoorenburg_cistron radius 1.6.3
icradius icradius 0.15
freeradius freeradius 0.2
gnu radius 0.93
icradius icradius 0.18.1
miquel_van_smoorenburg_cistron radius 1.6.5
radiusclient radiusclient 0.3.1
openradius openradius 0.8
xtradius xtradius 1.1_pre1
livingston radius 2.0.1
yard_radius yard_radius 1.0_pre13
lucent radius 2.1
openradius openradius 0.9.3
gnu radius 0.92.1
gnu radius 0.95
openradius openradius 0.9.1
lucent radius 2.0.1
yard_radius yard_radius 1.0.17
icradius icradius 0.14
miquel_van_smoorenburg_cistron radius 1.6.2
yard_radius yard_radius 1.0_pre15
freeradius freeradius 0.3
yard_radius yard_radius 1.0.19
icradius icradius 0.18
livingston radius 2.0
livingston radius 2.1
yard_radius yard_radius 1.0_pre14
miquel_van_smoorenburg_cistron radius 1.6.4
openradius openradius 0.9
CVE-2001-1377 MEDIUM

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent radius 2.0
icradius icradius 0.16
icradius icradius 0.17
icradius icradius 0.17b
openradius openradius 0.9.2
yard_radius yard_radius 1.0.18
miquel_van_smoorenburg_cistron radius 1.6_.0
miquel_van_smoorenburg_cistron radius 1.6.1
yard_radius_project yard_radius 1.0.16
gnu radius 0.94
miquel_van_smoorenburg_cistron radius 1.6.3
icradius icradius 0.15
freeradius freeradius 0.2
xtradius xtradius 1.1_pre2
gnu radius 0.93
icradius icradius 0.18.1
miquel_van_smoorenburg_cistron radius 1.6.5
radiusclient radiusclient 0.3.1
openradius openradius 0.8
xtradius xtradius 1.1_pre1
livingston radius 2.0.1
yard_radius yard_radius 1.0_pre13
lucent radius 2.1
openradius openradius 0.9.3
gnu radius 0.92.1
gnu radius 0.95
openradius openradius 0.9.1
lucent radius 2.0.1
yard_radius yard_radius 1.0.17
icradius icradius 0.14
miquel_van_smoorenburg_cistron radius 1.6.2
yard_radius yard_radius 1.0_pre15
freeradius freeradius 0.3
yard_radius yard_radius 1.0.19
icradius icradius 0.18
livingston radius 2.0
livingston radius 2.1
yard_radius yard_radius 1.0_pre14
miquel_van_smoorenburg_cistron radius 1.6.4
openradius openradius 0.9
CVE-2002-0236 HIGH

Lucent VitalSuite 8.0 through 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis, allows remote attackers to bypass authentication via a direct HTTP request to the VsSetCookie.exe program, which returns a valid cookie for the desired user.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent vitalhelp 8.0
lucent vitalsuite 8.0
lucent vitalevent 8.0
lucent vitalhelp 8.2
lucent vitalanalysis 8.0
lucent vitalhelp 8.1
lucent vitalnet 8.0
lucent vitalanalysis 8.2
lucent vitalnet 8.2
lucent vitalevent 8.2
lucent vitalsuite 8.2
lucent vitalevent 8.1
lucent vitalnet 8.1
lucent vitalsuite 8.1
lucent vitalanalysis 8.1
CVE-2002-2148 MEDIUM

Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard (UDP port 9) packet, which causes the device to leak the information in the response.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent ascend_max_router 4.0
lucent ascend_pipeline_router 3.0
lucent dslterminator *
lucent ascend_pipeline_router 2.0
lucent ascend_max_router 5.0_ap48
lucent ascend_max_router 2.0
lucent ascend_max_router 3.0
lucent ascend_pipeline_router 5.0
lucent ascend_max_router 5.0
lucent ascend_pipeline_router 6.0.2
lucent ascend_pipeline_router 1.0
lucent ascend_pipeline_router 6.0
lucent ascend_pipeline_router 4.0
CVE-2002-2149 MEDIUM

Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface.

CVSS 2.0

Severity: MEDIUM

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
lucent access_point_service_router_600 *
lucent access_point_service_router_1500 *
lucent access_point_service_router_300 *