CVE-2001-0514 - Vulnerability Details - OpenCVE

SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Linksys WAP11, accepts arbitrary community strings with requested MIB modifications, which allows remote attackers to obtain sensitive information such as WEP keys, cause a denial of service, or gain access to the network.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Atmel	802.11b Vnet-b Access Point
Linksys	Wap11
Netgear	Me102

Configuration 1 [-]

OR	cpe:2.3:h:atmel:802.11b_vnet-b_access_point::::::::
	cpe:2.3:h:linksys:wap11::::::::
	cpe:2.3:h:netgear:me102::::::::

No data.

References

Link	Providers
http://www.securityfocus.com/bid/2896
http://xforce.iss.net/alerts/advise83.php
https://exchange.xforce.ibmcloud.com/vulnerabilities/6576

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2002-03-09T05:00:00

Updated: 2024-08-08T04:21:38.593Z

Reserved: 2001-06-13T00:00:00

Link: CVE-2001-0514

Vulnrichment

No data.

NVD

Status : Modified

Published: 2001-07-21T04:00:00.000

Modified: 2024-11-20T23:35:32.763

Link: CVE-2001-0514

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2001-06-20T00:00:00", "descriptions": [{"lang": "en", "value": "SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Linksys WAP11, accepts arbitrary community strings with requested MIB modifications, which allows remote attackers to obtain sensitive information such as WEP keys, cause a denial of service, or gain access to the network."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2002-02-26T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20010620 Multiple Vendor 802.11b Access Point SNMP authentication flaw", "tags": ["third-party-advisory", "x_refsource_ISS"], "url": "http://xforce.iss.net/alerts/advise83.php"}, {"name": "2896", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/2896"}, {"name": "atmel-vnetb-ap-snmp-security(6576)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6576"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2001-0514", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Linksys WAP11, accepts arbitrary community strings with requested MIB modifications, which allows remote attackers to obtain sensitive information such as WEP keys, cause a denial of service, or gain access to the network."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20010620 Multiple Vendor 802.11b Access Point SNMP authentication flaw", "refsource": "ISS", "url": "http://xforce.iss.net/alerts/advise83.php"}, {"name": "2896", "refsource": "BID", "url": "http://www.securityfocus.com/bid/2896"}, {"name": "atmel-vnetb-ap-snmp-security(6576)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6576"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T04:21:38.593Z"}, "title": "CVE Program Container", "references": [{"name": "20010620 Multiple Vendor 802.11b Access Point SNMP authentication flaw", "tags": ["third-party-advisory", "x_refsource_ISS", "x_transferred"], "url": "http://xforce.iss.net/alerts/advise83.php"}, {"name": "2896", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/2896"}, {"name": "atmel-vnetb-ap-snmp-security(6576)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6576"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2001-0514", "datePublished": "2002-03-09T05:00:00", "dateReserved": "2001-06-13T00:00:00", "dateUpdated": "2024-08-08T04:21:38.593Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:atmel:802.11b_vnet-b_access_point:*:*:*:*:*:*:*:*", "matchCriteriaId": "DF7000C3-14FE-4E82-9960-8FE4A770E6FF", "versionEndIncluding": "1.3", "vulnerable": true}, {"criteria": "cpe:2.3:h:linksys:wap11:*:*:*:*:*:*:*:*", "matchCriteriaId": "D39E9CF7-1547-41E0-8438-ED046310251A", "vulnerable": true}, {"criteria": "cpe:2.3:h:netgear:me102:*:*:*:*:*:*:*:*", "matchCriteriaId": "26E90454-BC75-4482-A7C1-6CE7A6F9D024", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "SNMP service in Atmel 802.11b VNET-B Access Point 1.3 and earlier, as used in Netgear ME102 and Linksys WAP11, accepts arbitrary community strings with requested MIB modifications, which allows remote attackers to obtain sensitive information such as WEP keys, cause a denial of service, or gain access to the network."}], "id": "CVE-2001-0514", "lastModified": "2024-11-20T23:35:32.763", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2001-07-21T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/2896"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://xforce.iss.net/alerts/advise83.php"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6576"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/2896"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://xforce.iss.net/alerts/advise83.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/6576"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}