Lucene search

[email protected]NVD:CVE-2003-1264

HistoryDec 31, 2003 - 5:00 a.m.

CVE-2003-1264

2003-12-3105:00:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.021

Percentile

89.1%

JSON

TFTP server in Longshine Wireless Access Point (WAP) LCS-883R-AC-B, and in D-Link DI-614+ 2.0 which is based on it, allows remote attackers to obtain the WEP secret and gain administrator privileges by downloading the configuration file (config.img) and other files without authentication.

Affected configurations

Nvd

Node

d-linkdi-614\+Match2.0

longshine_technologielongshine_wireless_ethernet_access_pointMatchlcs-883r-ac-b

VendorProductVersionCPE
d-linkdi-614\+2.0cpe:2.3:h:d-link:di-614\+:2.0:*:*:*:*:*:*:*
longshine_technologielongshine_wireless_ethernet_access_pointlcs-883r-ac-bcpe:2.3:h:longshine_technologie:longshine_wireless_ethernet_access_point:lcs-883r-ac-b:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
d-link	di-614\+	2.0	cpe:2.3:h:d-link:di-614\+:2.0:::::::*
longshine_technologie	longshine_wireless_ethernet_access_point	lcs-883r-ac-b	cpe:2.3:h:longshine_technologie:longshine_wireless_ethernet_access_point:lcs-883r-ac-b:::::::*

References

www.iss.net/security_center/static/10997.php

www.securityfocus.com/archive/1/305344

www.securityfocus.com/archive/1/305391

www.securityfocus.com/bid/6533

www.securitytracker.com/id?1005897

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.021

Percentile

89.1%

JSON

Related for NVD:CVE-2003-1264

cvelist1 cve1