← Back

CVE-2013-4709

nvd nist
Published: Sep 20, 2013Modified: Apr 29, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Buffer overflow in the PPP Access Concentrator (PPPAC) on the SEIL/x86 with firmware before 2.82, SEIL/X1 with firmware before 4.32, SEIL/X2 with firmware before 4.32, SEIL/B1 with firmware before 4.32, SEIL/Turbo with firmware before 2.16, and SEIL/neu 2FE Plus with firmware before 2.16 allows remote attackers to execute arbitrary code via a crafted L2TP message.

Affected (18)

Iij
12 products
Seil X2 Firmware
Seil/x2
Seil%2fturbo Firmware
Seil/turbo
Seil%2fneu 2fe Plus Firmware
Seil/neu 2fe Plus
Seil%2fb1 Firmware
Seil/b1
Seil%2fx86 Firmware
Seil/x86
Seil%2fx1 Firmware
Seil/x1
Configuration A
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil X2 Firmware
Version 1.00
Seil X2 Firmware
Version 4.31
Seil/x2
All versions
Configuration B
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil%2fturbo Firmware
Version 2.05
Seil%2fturbo Firmware
Version 2.15
Seil/turbo
All versions
Configuration C
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil%2fneu 2fe Plus Firmware
Version 2.05
Seil%2fneu 2fe Plus Firmware
Version 2.15
Seil/neu 2fe Plus
All versions
Configuration D
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil%2fb1 Firmware
Version 1.00
Seil%2fb1 Firmware
Version 4.31
Seil/b1
All versions
Configuration E
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil%2fx86 Firmware
Version 1.00
Seil%2fx86 Firmware
Version 2.81
Seil/x86
All versions
Configuration F
3 vulnerable
Vulnerable SoftwareAffected Versions
Iij
Seil%2fx1 Firmware
Version 1.00
Seil%2fx1 Firmware
Version 4.31
Seil/x1
All versions

Related CWEs

CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (6)

Source: vultures@jpcert.or.jp
Vendor Advisory
Source: vultures@jpcert.or.jp
Vendor Advisory
Source: vultures@jpcert.or.jp
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.