Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0769

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2002-0769
Last Modified 05 Sep 2008 04:28:54
Published 12 Aug 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0769

Summary

The web-based configuration interface for the Cisco ATA 186 Analog Telephone Adaptor allows remote attackers to bypass authentication via an HTTP POST request with a single byte, which allows the attackers to (1) obtain the password from the login screen, or (2) reconfigure the adaptor by modifying certain request parameters.

Vulnerable Systems


References

BID - 4711

XF - cisco-ata-bypass-auth(9057)

XF - cisco-ata-reveal-info(9056)

BID - 4712

CISCO - 20020523 ATA-186 Password Disclosure Vulnerability

BUGTRAQ - 20020509 Cisco ATA-186 admin password can be trivially circumvented


Last Updated: 27 May 2016 10:37:04