4 matches found
CVE-2013-4875
The CVE-2013-4875 entry concerns the U-Boot bootloader used on the Verizon Wireless Network Extender SCS-2U01. The vulnerability allows a physically proximate attacker to bypass the intended boot process and reach a login prompt by connecting a crafted HDMI cable and issuing a SysReq interrupt. T...
CVE-2013-4874
CVE-2013-4874 affects the Uboot bootloader on the Verizon Wireless Network Extender SCS-26UC4. The vulnerability allows physically proximate attackers to obtain root access by connecting a crafted HDMI cable and using a sys session to modify the ramboot environment variable. Exploitation details ...
CVE-2013-4877
CVE-2013-4877 affects Verizon Wireless Network Extender models SCS-26UC4 and SCS-2U01. The root issue is that these devices do not use CAVE authentication, which allows an attacker to sniff registration packets over the network and obtain ESN and MIN values from arbitrary phones, enabling cloning...
CVE-2013-4876
The CVE-2013-4876 entry applies to the Verizon Wireless Network Extender SCS-2U01, where a hardcoded password for the root account enables physically proximate attackers to obtain administrative access via the device login prompt. The description documents the root cause (hardcoded root credentia...