Lucene search
HistoryMar 10, 2005 - 5:00 a.m.
CVE-2004-1760
cisco
voice products
remote attacks
admin privileges
tcp port 14247
7.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.011 Low
EPSS
Percentile
84.6%
The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not require authentication, which allows remote attackers to gain administrator privileges by connecting to TCP port 14247.
Affected configurations
Node
ciscoemergency_responderMatch1.1
ORciscoip_call_center_express_enhancedMatch3.0
ORciscoip_call_center_express_standardMatch3.0
ORciscoip_interactive_voice_responseMatch3.0
ORciscopersonal_assistantMatch1.3\(1\)
ORciscopersonal_assistantMatch1.3\(2\)
ORciscopersonal_assistantMatch1.3\(3\)
ORciscopersonal_assistantMatch1.3\(4\)
ORciscopersonal_assistantMatch1.4\(1\)
ORciscopersonal_assistantMatch1.4\(2\)
ORibmdirector_agentMatch2.2
ORibmdirector_agentMatch3.11
ORciscocall_managerMatch1.0
ORciscocall_managerMatch2.0
ORciscocall_managerMatch3.0
ORciscocall_managerMatch3.1
ORciscocall_managerMatch3.1\(2\)
ORciscocall_managerMatch3.1\(3a\)
ORciscocall_managerMatch3.2
ORciscocall_managerMatch3.3
ORciscocall_managerMatch3.3\(3\)
ORciscocall_managerMatch4.0
ORciscointernet_service_node
Node
ciscoconference_connectionMatch1.1\(1\)
ORciscoconference_connectionMatch1.2
Node
ibmmcs-7815-1000
ORibmmcs-7815i-2.0
ORibmmcs-7835i-2.4
ORibmmcs-7835i-3.0
ORibmx330Match8654
ORibmx330Match8674
ORibmx340
ORibmx342
ORibmx345
7.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.011 Low
EPSS
Percentile
84.6%
Related for CVE-2004-1760