Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0484

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2001-0484
Last Modified 05 Sep 2008 04:24:13
Published 27 Jun 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0484

Summary

Tektronix PhaserLink 850 does not require authentication for access to configuration pages such as _ncl_subjects.shtml and _ncl_items.shtml, which allows remote attackers to modify configuration information and cause a denial of service by accessing the pages.

Vulnerable Systems

Application

  • Tek Phaserlink 850


References

XF - tektronix-phaserlink-webserver-backdoor(6482)

BUGTRAQ - 20010425 Tektronix (Xerox) PhaserLink 850 Webserver Vulnerability (NEW)


Last Updated: 27 May 2016 10:36:17