PT-2003-1135 · Polycom · Polycom Viewstation
Published
2003-01-03
·
Updated
2024-02-09
·
CVE-2002-0628
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Polycom ViewStation versions prior to 7.2.4
Description
The issue allows remote attackers to guess usernames and passwords via a brute force attack because the Telnet service does not restrict the number of failed login attempts.
Recommendations
For versions prior to 7.2.4, update to version 7.2.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the Telnet service to minimize the risk of exploitation.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Polycom Viewstation