CVE-2005-3718

Name of the Vulnerable Software and Affected Versions UTStarcom F1000 VOIP WIFI Phone version s2.0

Description The issue allows remote attackers to exploit other weaknesses or execute arbitrary shell commands via rlogin on TCP port 513, which does not require authentication. This is because users cannot disable access to rlogin or SNMP.

Recommendations For UTStarcom F1000 VOIP WIFI Phone version s2.0, restrict access to the rlogin port TCP 513 to minimize the risk of exploitation. Additionally, consider disabling SNMP access until a more permanent solution is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.