PT-2004-1460 · Cisco · Cisco Ons 15454+3
Publicado
2004-09-01
·
Atualizado
2018-10-30
·
CVE-2004-0306
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:N/I:P/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco ONS 15327 versions prior to 4.1(3)
Cisco ONS 15454 versions prior to 4.6(1)
Cisco ONS 15454 SD versions prior to 4.1(3)
Cisco ONS 15600 versions prior to 1.3(0)
Description
The issue allows remote attackers to access or modify system files on the current active TCC in the /flash0 or /flash1 directories due to the TFTP service being enabled by default on UDP port 69.
Recommendations
For Cisco ONS 15327 versions prior to 4.1(3), update to version 4.1(3) or later.
For Cisco ONS 15454 versions prior to 4.6(1), update to version 4.6(1) or later.
For Cisco ONS 15454 SD versions prior to 4.1(3), update to version 4.1(3) or later.
For Cisco ONS 15600 versions prior to 1.3(0), update to version 1.3(0) or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Cisco Ons 15327
Cisco Ons 15454
Cisco Ons 15454 Sd
Cisco Ons 15600