Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4874

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-4874
Last Modified 07 Mar 2011 10:13:24
Published 01 Nov 2008 02:00:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4874

Summary

The web component in Philips Electronics VOIP841 DECT Phone with firmware 1.0.4.50 and 1.0.4.80 has a back door "service" account with "service" as its password, which makes it easier for remote attackers to obtain access.

Vulnerable Systems


References

VUPEN - ADV-2008-0583

BID - 27790

BUGTRAQ - 20080214 Philips VOIP841 Multiple Vulnerabilities

MISC - http://www.securenetwork.it/ricerca/advisory/download/SN-2008-01.txt

MILW0RM - 5113

SREASON - 4536

SECUNIA - 28978

OSVDB - 42940

BUGTRAQ - 20080215 Re: Philips VOIP841 Multiple Vulnerabilities


Last Updated: 27 May 2016 10:48:39