Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-1436
HistoryFeb 13, 2005 - 5:00 a.m.

CVE-2004-1436

2005-02-1305:00:00
[email protected]
web.nvd.nist.gov
15
cisco
ons 15327
15454
tl1
login interface
vulnerability
unauthorized access
remote attack
nvd
cve-2004-1436

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.3%

JSON

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

Affected configurations

NVD
Node
ciscooptical_networking_systems_softwareMatch1.0
OR
ciscooptical_networking_systems_softwareMatch1.1
OR
ciscooptical_networking_systems_softwareMatch1.1\(0\)
OR
ciscooptical_networking_systems_softwareMatch1.1\(1\)
OR
ciscooptical_networking_systems_softwareMatch1.3\(0\)
OR
ciscooptical_networking_systems_softwareMatch2.3\(5\)
OR
ciscooptical_networking_systems_softwareMatch3.0
OR
ciscooptical_networking_systems_softwareMatch3.1.0
OR
ciscooptical_networking_systems_softwareMatch3.2
OR
ciscooptical_networking_systems_softwareMatch3.2.0
OR
ciscooptical_networking_systems_softwareMatch3.3.0
OR
ciscooptical_networking_systems_softwareMatch3.4.0
OR
ciscooptical_networking_systems_softwareMatch4.0\(0\)
OR
ciscooptical_networking_systems_softwareMatch4.0\(1\)
OR
ciscooptical_networking_systems_softwareMatch4.0\(2\)
OR
ciscooptical_networking_systems_softwareMatch4.0.0
OR
ciscooptical_networking_systems_softwareMatch4.1\(0\)
OR
ciscooptical_networking_systems_softwareMatch4.1\(1\)
OR
ciscooptical_networking_systems_softwareMatch4.1\(2\)
OR
ciscooptical_networking_systems_softwareMatch4.1\(3\)
OR
ciscooptical_networking_systems_softwareMatch4.5
OR
ciscooptical_networking_systems_softwareMatch4.6\(0\)
OR
ciscooptical_networking_systems_softwareMatch4.6\(1\)
CPENameOperatorVersion
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq1.0
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq1.1
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq1.1\(0\)
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq1.1\(1\)
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq1.3\(0\)
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq2.3\(5\)
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq3.0
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq3.1.0
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq3.2
cisco:optical_networking_systems_softwarecisco optical networking systems softwareeq3.2.0
Rows per page:
1-10 of 231

Related

nvd 1
cvelist 1
nessus 1
nvd
nvd
CVE-2004-1436
2004-12-31 05:00:00
cvelist
cvelist
CVE-2004-1436
2005-02-13 05:00:00
nessus
nessus
Cisco ONS Multiple Remote Vulnerabilities (20040721-ons)
2005-01-18 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.3%

JSON
Related for CVE-2004-1436
nvd1cvelist1nessus1