Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2984

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2005-2984
Last Modified 05 Sep 2008 04:53:09
Published 19 Sep 2005 08:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2005-2984

Summary

Avocent CCM console server running firmware 2.1 CCM4850 allows remote authenticated attackers to bypass port restrictions by connecting to the server via SSH and using the connect command to access the serial port.

Vulnerable Systems


References

XF - avocent-connect-security-bypass(22302)

BID - 14853

SECUNIA - 16836

BUGTRAQ - 20050915 Avocent CCM: Port Access Control Bypass Vulnerability

MISC - http://drwetter.org/cs-probs/avocent-sshbug.txt


Last Updated: 27 May 2016 10:40:42