PT-2004-1462 · Cisco+1 · Cisco Ons 15600+4
Publicado
2004-03-18
·
Atualizado
2018-10-30
·
CVE-2004-0308
CVSS v2.0
10
Alta
| Vetor | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco ONS 15327 versions prior to 4.1(3)
Cisco ONS 15454 versions prior to 4.6(1)
Cisco ONS 15454 SD versions prior to 4.1(3)
Cisco ONS 15600 versions prior to 1.3(0)
Description
The issue allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.
Recommendations
For Cisco ONS 15327 versions prior to 4.1(3), update to version 4.1(3) or later.
For Cisco ONS 15454 versions prior to 4.6(1), update to version 4.6(1) or later.
For Cisco ONS 15454 SD versions prior to 4.1(3), update to version 4.1(3) or later.
For Cisco ONS 15600 versions prior to 1.3(0), update to version 1.3(0) or later.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Cisco Ons 15327
Cisco Ons 15454
Cisco Ons 15454 Sd
Cisco Ons 15600
Vxworks