Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0250


Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0250
Last Modified 05 Sep 2008 04:27:33
Published 29 May 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Web configuration utility in HP AdvanceStack hubs J3200A through J3210A with firmware version A.03.07 and earlier, allows unauthorized users to bypass authentication via a direct HTTP request to the web_access.html file, which allows the user to change the switch's configuration and modify the administrator password.

Vulnerable Systems


XF - hp-advancestack-bypass-auth(8124)

HP - HPSBUX0202-185

BID - 4062

BUGTRAQ - 20020208 Hewlett Packard AdvanceStack Switch Managment Authentication Bypass Vulnerability

Last Updated: 27 May 2016 10:36:50