Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1436

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1436
Last Modified 05 Sep 2008 04:41:21
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1436

Summary

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

Vulnerable Systems

Operating System

  • Cisco Ons 15327 3.0

  • Cisco Ons 15327 3.1

  • Cisco Ons 15327 3.2

  • Cisco Ons 15327 3.3

  • Cisco Ons 15327 3.4

  • Cisco Ons 15327 4.0

  • Cisco Ons 15327 4.0%281%29

  • Cisco Ons 15327 4.0%282%29

  • Cisco Ons 15327 4.1%280%29

  • Cisco Ons 15327 4.1%281%29

  • Cisco Ons 15327 4.1%282%29

  • Cisco Ons 15327 4.1%283%29

  • Cisco Ons 15327 4.6%280%29

  • Cisco Ons 15327 4.6%281%29

  • Cisco Ons 15454 Optical Transport Platform 2.3%285%29

  • Cisco Ons 15454 Optical Transport Platform 3.0

  • Cisco Ons 15454 Optical Transport Platform 3.1.0

  • Cisco Ons 15454 Optical Transport Platform 3.2.0

  • Cisco Ons 15454 Optical Transport Platform 3.3

  • Cisco Ons 15454 Optical Transport Platform 3.4

  • Cisco Ons 15454 Optical Transport Platform 4.0

  • Cisco Ons 15454 Optical Transport Platform 4.0%281%29

  • Cisco Ons 15454 Optical Transport Platform 4.0%282%29

  • Cisco Ons 15454 Optical Transport Platform 4.1%280%29

  • Cisco Ons 15454 Optical Transport Platform 4.1%281%29

  • Cisco Ons 15454 Optical Transport Platform 4.1%282%29

  • Cisco Ons 15454 Optical Transport Platform 4.1%283%29

  • Cisco Ons 15454 Optical Transport Platform 4.5

  • Cisco Ons 15454 Optical Transport Platform 4.6%280%29

  • Cisco Ons 15454 Optical Transport Platform 4.6%281%29

  • Cisco Ons 15454sdh 2.3%285%29

  • Cisco Ons 15454sdh 3.1

  • Cisco Ons 15454sdh 3.2

  • Cisco Ons 15454sdh 3.3

  • Cisco Ons 15454sdh 3.4

  • Cisco Ons 15454sdh 4.0%280%29

  • Cisco Ons 15454sdh 4.0%281%29

  • Cisco Ons 15454sdh 4.0%282%29

  • Cisco Ons 15454sdh 4.1%280%29

  • Cisco Ons 15454sdh 4.1%281%29

  • Cisco Ons 15454sdh 4.1%282%29

  • Cisco Ons 15454sdh 4.1%283%29

  • Cisco Ons 15454sdh 4.5

  • Cisco Ons 15454sdh 4.6%280%29

  • Cisco Ons 15454sdh 4.6%281%29

  • Cisco Ons 15600 1.0

  • Cisco Ons 15600 1.1

  • Cisco Ons 15600 1.1%280%29

  • Cisco Ons 15600 1.1%281%29

  • Cisco Ons 15600 1.3%280%29


References

CERT-VN - VU#760432

XF - cisco-ons-tl1-auth-bypass(16766)

BID - 10768

CISCO - 20040721 Cisco ONS 15327, ONS 15454, ONS 15454 SDH, and ONS 15600 Malformed Packet Vulnerabilities

SECUNIA - 12117


Last Updated: 27 May 2016 10:39:02