Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3718

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3718
Last Modified 07 Mar 2011 09:27:01
Published 21 Nov 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3718

Summary

UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to (1) SNMP or (2) the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, which does not require authentication.

Vulnerable Systems


References

VUPEN - ADV-2005-2472

SECUNIA - 17629

FULLDISC - 20051117 UTstarcom F1000 VoIP Wifi phone multiple vulnerabilities

BID - 15476


Last Updated: 27 May 2016 10:41:01