Total vulnerabilities in the database
Cisco DSL CPE devices running CBOS 2.4.4 and earlier allows remote attackers to cause a denial of service (hang or memory consumption) via (1) a large packet to the DHCP port, (2) a large packet to the Telnet port, or (3) a flood of large packets to the CPE, which causes the TCP/IP stack to consume large amounts of memory.
| Software | From | Fixed in |
|---|---|---|
| cisco / cbos | 2.3.9 | 2.3.9.x |
| cisco / cbos | 2.2.1a | 2.2.1a.x |
| cisco / cbos | 2.2.1 | 2.2.1.x |
| cisco / cbos | 2.0.1 | 2.0.1.x |
| cisco / cbos | 2.1.0a | 2.1.0a.x |
| cisco / cbos | 2.4.3 | 2.4.3.x |
| cisco / cbos | 2.3.5.015 | 2.3.5.015.x |
| cisco / cbos | 2.4.1 | 2.4.1.x |
| cisco / cbos | 2.3 | 2.3.x |
| cisco / cbos | 2.3_.053 | 2.3_.053.x |
| cisco / cbos | 2.4.4 | 2.4.4.x |
| cisco / cbos | 2.4.2ap | 2.4.2ap.x |
| cisco / cbos | 2.1.0 | 2.1.0.x |
| cisco / cbos | 2.3.2 | 2.3.2.x |
| cisco / cbos | 2.3.5 | 2.3.5.x |
| cisco / cbos | 2.2.0 | 2.2.0.x |
| cisco / cbos | 2.4.2 | 2.4.2.x |
| cisco / cbos | 2.3.7 | 2.3.7.x |
| cisco / cbos | 2.3.7.002 | 2.3.7.002.x |
| cisco / cbos | 2.4.2b | 2.4.2b.x |
| cisco / cbos | 2.3.8 | 2.3.8.x |