CVE-2002-1949

Name of the Vulnerable Software and Affected Versions Iomega NAS A300U

Description The issue concerns the transmission of passwords in cleartext by the Network Attached Storage (NAS) Administration Web Page, allowing remote attackers to intercept the administrative password.

Recommendations For Iomega NAS A300U, consider disabling the web administration interface until a fix is available to prevent remote attackers from sniffing the administrative password. Restrict access to the administrative web page to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.