Lucene search

[email protected]CVE-2002-2133

HistoryDec 31, 2002 - 5:00 a.m.

CVE-2002-2133

2002-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

telindus

1100

asdl

router

firmware

vulnerability

weak encryption

udp

sniffing

decrypting

unauthorized access

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.6%

JSON

Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote attackers to gain unauthorized access by sniffing and decrypting the administrative password.

CPENameOperatorVersion
telindus:1120_adsl_routertelindus 1120 adsl routereq6.0.21b_firmware

CPE	Name	Operator	Version
telindus:1120_adsl_router	telindus 1120 adsl router	eq	6.0.21b_firmware

References

archives.neohapsis.com/archives/bugtraq/2002-12/0262.html

archives.neohapsis.com/archives/bugtraq/2003-02/0277.html

www.iss.net/security_center/static/10951.php

www.osvdb.org/4762

www.securityfocus.com/bid/6919

8 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.019 Low

EPSS

Percentile

88.6%

JSON

Related for CVE-2002-2133

cvelist1