Lucene search

[email protected]CVE-2001-1260

HistoryAug 07, 2001 - 4:00 a.m.

CVE-2001-1260

2001-08-0704:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

avaya argent office

weak encryption

remote attack

password decryption

system reboot

cve-2001-1260

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.6%

JSON

Avaya Argent Office uses weak encryption (trivial encoding) for passwords, which allows remote attackers to gain administrator privileges by sniffing and decrypting the sniffing the passwords during a system reboot.

CPENameOperatorVersion
avaya:argent_officeavaya argent officeeq*

CPE	Name	Operator	Version
avaya:argent_office	avaya argent office	eq	*

References

online.securityfocus.com/archive/1/202344

www.iss.net/security_center/static/6954.php

7.8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.6%

JSON