Strix
26.1K

CVE-2014-7256

UnknownEPSS 1.80%

Last modified

CVE-2014-7256 is a vulnerability of currently unknown severity. The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers SEIL/x86 Fuji 1.00 through 3.22; SEIL/X1, SEIL/X2, and SEIL/B1 1.00 through 4.62; SEIL/Turbo 1.82 through 2.18; and SEIL/neu 2FE Plus 1.82 through 2.18 allow remote attackers to cause a denial of service (restart) via crafted (a) GRE or (b) MPPE packets.. EPSS estimates a 1.80% chance of exploitation in the next 30 days.

Description

The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers SEIL/x86 Fuji 1.00 through 3.22; SEIL/X1, SEIL/X2, and SEIL/B1 1.00 through 4.62; SEIL/Turbo 1.82 through 2.18; and SEIL/neu 2FE Plus 1.82 through 2.18 allow remote attackers to cause a denial of service (restart) via crafted (a) GRE or (b) MPPE packets.

Metrics

EPSS Probability
1.80%

75.7th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
IijSeil Plus Firmware1.82
IijSeil Plus Firmware1.83
IijSeil Plus Firmware1.84
IijSeil Plus Firmware1.85
IijSeil Plus Firmware1.86
IijSeil Plus Firmware1.87
IijSeil Plus Firmware1.88
IijSeil Plus Firmware1.89
IijSeil Plus Firmware1.90
IijSeil Plus Firmware1.91
IijSeil Plus Firmware1.92
IijSeil Plus Firmware1.93
IijSeil Plus Firmware1.94
IijSeil Plus Firmware1.95
IijSeil Plus Firmware1.96
IijSeil Plus Firmware1.97
IijSeil Plus Firmware1.98
IijSeil Plus Firmware1.99
IijSeil Plus Firmware2.01
IijSeil Plus Firmware2.02
IijSeil Plus Firmware2.03
IijSeil Plus Firmware2.04
IijSeil Plus Firmware2.05
IijSeil Plus Firmware2.06
IijSeil Plus Firmware2.07
IijSeil Plus Firmware2.08
IijSeil Plus Firmware2.09
IijSeil Plus Firmware2.10
IijSeil Plus Firmware2.11
IijSeil Plus Firmware2.12
IijSeil Plus Firmware2.13
IijSeil Plus Firmware2.14
IijSeil Plus Firmware2.15
IijSeil Plus Firmware2.16
IijSeil Plus Firmware2.17
IijSeil Plus Firmware2.18
IijSeil PlusAll versions
IijSeil B1 Firmware<= 4.61
IijSeil X1 Firmware<= 4.61
IijSeil Turbo Firmware1.82
IijSeil Turbo Firmware1.83
IijSeil Turbo Firmware1.84
IijSeil Turbo Firmware1.85
IijSeil Turbo Firmware1.86
IijSeil Turbo Firmware1.87
IijSeil Turbo Firmware1.88
IijSeil Turbo Firmware1.89
IijSeil Turbo Firmware1.90
IijSeil Turbo Firmware1.91
IijSeil Turbo Firmware1.92

Showing 50 of 79 affected configurations. See NVD for the full list.

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2014-7256?
The (1) PPP Access Concentrator (PPPAC) and (2) Dial-Up Networking Internet Initiative Japan Inc. SEIL series routers SEIL/x86 Fuji 1.00 through 3.22; SEIL/X1, SEIL/X2, and SEIL/B1 1.00 through 4.62; SEIL/Turbo 1.82 through 2.18; and SEIL/neu 2FE Plus 1.82 through 2.18 allow remote attackers to cause a denial of service (restart) via crafted (a) GRE or (b) MPPE packets.
How severe is CVE-2014-7256?
Severity scoring for CVE-2014-7256 is pending analysis. The EPSS model estimates a 1.80% probability of exploitation in the next 30 days.
How do I fix CVE-2014-7256?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-7256?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST