CVE-2014-2942

Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code, and then leveraging physical access or terminal access to enter this code...

Code injection

Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code, and then leveraging physical access or terminal access to enter this code...

CVE-2014-2942

Cobham Aviator 700D/700E satellite terminals are affected by CVE-2014-2942 due to use of a broken/risky cryptographic algorithm to generate PINs. This enables a local, unauthenticated attacker to calculate a superuser PIN and gain full control of the terminal, given physical access or access to t...

CVE-2014-2964

Cobham Aviator 700D and 700E satellite terminals have hardcoded passwords for the 1 debug, 2 prod, 3 do160, and 4 flrp programs, which allows physically proximate attackers to gain privileges by sending a password over a serial line...

CVE-2014-2964

Cobham Aviator 700D/700E satellite terminals expose hardcoded credentials for the maintenance commands (debug, prod, do160, flrp). A local attacker with physical access or maintenance-port connectivity can authenticate via a serial line and potentially gain full control of the terminal. ROOT caus...