19 matches found
EUVD-2002-1538
Malware in sbrugna...
EUVD-2002-1539
Malware in sbrugna...
EUVD-2002-1537
Malware in sbrugna...
EUVD-2002-1540
Malware in sbrugna...
Cisco Security Advisory: Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities Revision 1.0 For Public Release 2003 May 01 at 1600 UTC GMT ---------------------------------------------------------------------- Contents Summary...
Cisco ONS15454, ONS15327, ONS15454SDH, and ONS15600 Nessus Vulnerabilities
...
CVE-2002-1554
Cisco ONS15454 and ONS15327 running ONS before 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow attackers to gain privileges by obtaining the passwords from the image database or a backup...
CVE-2002-1555
Cisco ONS15454 and ONS15327 running ONS before 3.4 uses a "public" SNMP community string that cannot be changed, which allows remote attackers to obtain sensitive information...
CVE-2002-1553
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows remote attackers to modify the system configuration and delete files by establishing an FTP connection to the TCC, TCC+ or XTC using a username and password that does not exist...
CVE-2002-1558
Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet...
CVE-2002-1555
Cisco ONS CVE-2002-1555 affects Cisco ONS15454 and ONS15327 running ONS before 3.4, where a default, unchangeable SNMP public community string allows remote attackers to obtain sensitive information. The provided documents do not include a remediation or patch details; upgrade/mitigation specific...
CVE-2002-1556
Cisco ONS15454 and ONS15327 devices running ONS prior to version 3.4 are vulnerable to a denial-of-service (reset) via an HTTP request to the TCC, TCC+ or XTC that includes an invalid CORBA Interoperable Object Reference (IOR). The affected hardware/software are Cisco ONS platforms mentioned in C...
CVE-2002-1558
Cisco ONS15454 and ONS15327 running ONS before 3.4 expose a non-modifiable VxWorks system account within the TCC, TCC+ and XTC, enabling remote privilege escalation by Telnet. Affected product families: Cisco ONS. Root cause: account cannot be changed or disabled, allowing non-authenticated or lo...
CVE-2002-1553
The CVE-2002-1553 entry affects Cisco ONS15454 and ONS15327 running ONS prior to 3.4. The vulnerability lets a remote attacker modify system configuration and delete files by connecting via FTP to the TCC, TCC+ or XTC using a non-existent username/password. Connected sources corroborate the issue...
CVE-2002-1554
Cisco ONS15454 and ONS15327 running ONS before 3.4 stores usernames and passwords in cleartext in the image database for the TCC, TCC+ or XTC, which could allow attackers to gain privileges by obtaining the passwords from the image database or a backup...
CVE-2002-1554
CVE-2002-1554 affects Cisco ONS15454 and ONS15327 running ONS before 3.4. The issue is that usernames and passwords are stored in cleartext in the image database for the TCC, TCC+ or XTC, which could allow an attacker to gain privileges by extracting passwords from the image database or a backup....
CVE-2002-1557
CVE-2002-1557 affects Cisco ONS platforms: ONS15454 and ONS15327 running ONS before 3.4. The vulnerability is triggered by a malformed HTTP request that does not start with a leading â/â, allowing an attacker to cause a denial of service by resetting to TCC, TCC+, TCCi or XTC. The provided docume...
Cisco Security Advisory: Cisco ONS15454 and Cisco ONS15327 Vulnerabilities
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Cisco ONS15454 and Cisco ONS15327 Vulnerabilities Revision 1.0 For Public Release 2002 October 31 at 1600 UTC ---------------------------------------------------------------------- Contents Summary Affected Products Details...
Cisco ONS15454 and Cisco ONS15327 Vulnerabilities
...