TippingPoint Zero Day Initiative

 

Arris Cadant C3 CMTS Remote DoS Vulnerability

ZDI-07-036: June 11th, 2007

CVE ID

CVE-2007-2796

Affected Vendors

Arris

Affected Products

Cadant C3 CMTS

Vulnerability Details

This vulnerability allows remote attackers to cause a denial of service on vulnerable Arris Cadant C3 CMTS systems. Authentication is not required to exploit this vulnerability.

The flaw exists due to mishandling of IP options. When an unknown or bad option is specified, the C3 will terminate disabling all service that is handled by that CMTS. The vulnerability can be triggered with a single malformed IP packet.

Vendor Response

Arris has issued an update to correct this vulnerability. More details can be found at:

http://www.arrisi.com/contact_us/support/

Disclosure Timeline

2007-02-23 - Vulnerability reported to vendor
2007-06-11 - Coordinated public release of advisory

Credit

This vulnerability was discovered by:

Anonymous

Published Advisories

ZDI-10-169: Novell

• published 2010-09-01

ZDI-10-168: Apple

• published 2010-08-31

ZDI-10-167: RealNetworks

• published 2010-08-26

ZDI-10-166: RealNetworks

• published 2010-08-26

ZDI-10-165: Trend Micro

• published 2010-08-25

Upcoming Advisories

Novell

• reported 2010-08-23, 8 days ago

Mozilla Firefox

• reported 2010-08-12, 19 days ago

CA

• reported 2010-08-12, 19 days ago

Apple

• reported 2010-08-12, 19 days ago

Symantec

• reported 2010-07-20, 42 days ago

Recent Press

How Microsoft ranks with the most tardy bug ...

• published 2010-08-05, Network World

HP TippingPoint gives deadline to vendors

• published 2010-08-05, International Business Times

TippingPoint sets six-month deadline for flaw fixes

• published 2010-08-04, V3

HP's Zero Day Initiative Gives Vendors Patching Deadline

• published 2010-08-04, CRN

Researchers Throw Down Vulnerability-Disclosure Gauntlet

• published 2010-08-04, DarkReading