Extreme · Extremeware Xos · CVE-2005-1670
**Name of the Vulnerable Software and Affected Versions**
Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS versions 10.x through 11.0 before 11.0.2.4
Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS versions 11.1 through 11.1 before 11.1.3.3
**Description**
The issue allows remote authenticated users to execute arbitrary commands.
**Recommendations**
For versions 10.x, update to a version after 11.0.2.4 or apply a configuration change that restricts remote command execution.
For versions 11.0 before 11.0.2.4, update to version 11.0.2.4 or later.
For versions 11.1 before 11.1.3.3, update to version 11.1.3.3 or later.