Lucene search

[email protected]CVE-2003-1515

HistoryOct 25, 2007 - 7:00 p.m.

CVE-2003-1515

2007-10-2519:00:00

CWE-264

[email protected]

web.nvd.nist.gov

origo asr-8100

adsl router

cve-2003-1515

denial of service

remote attack

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

JSON

Origo ASR-8100 ADSL Router 3.21 has an administration service running on port 254 that does not require a password, which allows remote attackers to cause a denial of service by restoring the factory defaults.

Affected configurations

NVD

Node

origoasr-8100Matchadsl_router_3.21

origoasr-8400Matchadsl_router

CPENameOperatorVersion
origo:asr-8100origo asr-8100eqadsl_router_3.21
origo:asr-8400origo asr-8400eqadsl_router

CPE	Name	Operator	Version
origo:asr-8100	origo asr-8100	eq	adsl_router_3.21
origo:asr-8400	origo asr-8400	eq	adsl_router

References

securityreason.com/securityalert/3300

www.securityfocus.com/archive/1/341752

www.securityfocus.com/bid/8855

exchange.xforce.ibmcloud.com/vulnerabilities/13463

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.3%

JSON

Related for CVE-2003-1515

cvelist1 nvd1