Lucene search
MitreCVE-2005-3718HistoryNov 21, 2005 - 11:03 a.m.
CVE-2005-3718
2005-11-2111:03:00
mitre
web.nvd.nist.gov
23
utstarcom
f1000
voip
wifi phone
vxworks
kernel
wind
snmp
rlogin
tcp 513
remote attackers
cve-2005-3716
arbitrary shell commands
authentication
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.019
Percentile
88.6%
UTStarcom F1000 VOIP WIFI Phone s2.0 running VxWorks 5.5.1 with kernel WIND 2.6 does not allow users to disable access to (1) SNMP or (2) the rlogin port TCP 513, which allows remote attackers to exploit other vulnerabilities such as CVE-2005-3716, or execute arbitrary shell commands via rlogin, which does not require authentication.
Affected configurations
Node
utstarcomf1000_voip_wifi_phoneMatch2.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| utstarcom | f1000_voip_wifi_phone | 2.0 | cpe:2.3:h:utstarcom:f1000_voip_wifi_phone:2.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2005-3718
2005-11-21 11:00:00
CVE-2005-3716
2005-11-21 11:00:00
nvd
nvd
CVE-2005-3718
2005-11-21 11:03:00
CVE-2005-3716
2005-11-21 11:03:00
cve
cve
CVE-2005-3716
2005-11-21 11:03:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
8
Confidence
Low
EPSS
0.019
Percentile
88.6%
Related for CVE-2005-3718