CVE-2005-3721

2005-11-2111:00:00

mitre

www.cve.org

6.8 Medium

AI Score

Confidence

Low

0.007 Low

EPSS

Percentile

80.4%

JSON

The default configuration of the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not require authentication for sensitive configuration pages, which allows remote attackers to modify configuration.

References

marc.info/?l=full-disclosure&m=113217425618951&w=2

secunia.com/advisories/17628

www.hitachi-cable.co.jp/ICSFiles/infosystem/security/76659792_e.pdf