PT-2012-3176 · Utc Fire & Security · Ge-Mc100-Ntp/Gps-Zb Master Clock

Temple Murphy

Publicado

2012-02-23

Atualizado

2012-02-27

CVE-2012-1288

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions UTC Fire & Security GE-MC100-NTP/GPS-ZB Master Clock device (affected versions not specified)

Description The issue concerns the use of hardcoded credentials for an administrative account in the device, making it easier for remote attackers to gain access through an HTTP session.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-255

Identificadores relacionados

CVE-2012-1288

Produtos afetados

Ge-Mc100-Ntp/Gps-Zb Master Clock

PT-2012-3176 · Utc Fire & Security · Ge-Mc100-Ntp/Gps-Zb Master Clock

CVE-2012-1288

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2