Lucene search

[email protected]CVE-2002-0628

HistoryJan 07, 2003 - 5:00 a.m.

CVE-2002-0628

2003-01-0705:00:00

CWE-307

[email protected]

web.nvd.nist.gov

telnet

polycom viewstation

cve-2002-0628

brute force attack

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.3%

JSON

The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.

Affected configurations

NVD

Node

polycomviewstation_128Match6.5.1

polycomviewstation_128Match7.2

polycomviewstation_512Match6.5.1

polycomviewstation_512Match7.2

polycomviewstation_dcpMatch6.5.1

polycomviewstation_dcpMatch7.2

polycomviewstation_fx_vs4000Match4.1.5

polycomviewstation_h.323Match6.5.1

polycomviewstation_h.323Match7.2

polycomviewstation_mpMatch6.5.1

polycomviewstation_mpMatch7.2

polycomviewstation_sp_384Match6.5.1

polycomviewstation_sp_384Match7.2

polycomviewstation_v.35Match6.5.1

polycomviewstation_v.35Match7.2

CPENameOperatorVersion
polycom:viewstation_128polycom viewstation 128eq6.5.1
polycom:viewstation_128polycom viewstation 128eq7.2
polycom:viewstation_512polycom viewstation 512eq6.5.1
polycom:viewstation_512polycom viewstation 512eq7.2
polycom:viewstation_dcppolycom viewstation dcpeq6.5.1
polycom:viewstation_dcppolycom viewstation dcpeq7.2
polycom:viewstation_fx_vs4000polycom viewstation fx vs4000eq4.1.5
polycom:viewstation_h.323polycom viewstation h.323eq6.5.1
polycom:viewstation_h.323polycom viewstation h.323eq7.2
polycom:viewstation_mppolycom viewstation mpeq6.5.1

CPE	Name	Operator	Version
polycom:viewstation_128	polycom viewstation 128	eq	6.5.1
polycom:viewstation_128	polycom viewstation 128	eq	7.2
polycom:viewstation_512	polycom viewstation 512	eq	6.5.1
polycom:viewstation_512	polycom viewstation 512	eq	7.2
polycom:viewstation_dcp	polycom viewstation dcp	eq	6.5.1
polycom:viewstation_dcp	polycom viewstation dcp	eq	7.2
polycom:viewstation_fx_vs4000	polycom viewstation fx vs4000	eq	4.1.5
polycom:viewstation_h.323	polycom viewstation h.323	eq	6.5.1
polycom:viewstation_h.323	polycom viewstation h.323	eq	7.2
polycom:viewstation_mp	polycom viewstation mp	eq	6.5.1

Rows per page:

1-10 of 151

References

bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089

www.ciac.org/ciac/bulletins/m-123.shtml

www.iss.net/security_center/static/9349.php

www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf

www.securityfocus.com/bid/5635

exchange.xforce.ibmcloud.com/vulnerabilities/44241

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

7 High

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.3%

JSON

Related for CVE-2002-0628

cvelist1 nvd1