Lucene search

[email protected]CVE-2011-2077

HistoryMay 10, 2011 - 7:55 p.m.

CVE-2011-2077

2011-05-1019:55:02

CWE-16

[email protected]

web.nvd.nist.gov

cve-2011-2077

new atlanta bluedragon

mediacast

tcp connections

port 10000

remote attacks

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.1%

JSON

The default configuration of the New Atlanta BlueDragon administrative interface in MediaCAST 8 and earlier enables external TCP connections to port 10000, instead of connections only from 127.0.0.1, which makes it easier for remote attackers to have an unspecified impact via a TCP session.

Affected configurations

NVD

Node

inventivetecmediacastRange≤8

CPENameOperatorVersion
inventivetec:mediacastinventivetec mediacastle8

CPE	Name	Operator	Version
inventivetec:mediacast	inventivetec mediacast	le	8

References

securityreason.com/securityalert/8245

www.packetninjas.net/storage/advisories/MediaCast-PWDump-FINAL.txt

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7 High

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.1%

JSON

Related for CVE-2011-2077

prion1 nvd1 cvelist1