Default Null Password Vulnerability in Polycom Videoconferencing Products
CVE-2002-0626

Currently unrated

Key Information:

Vendor: Polycom
Status: Viewstation 512; Viewstation H.323; Viewstation Sp 384; Viewstation Mp
Vendor: CVE Published:; 7 January 2003

What is CVE-2002-0626?

The Polycom ViewStation videoconferencing product prior to version 7.2.4 is vulnerable due to a default null password set for the administrator account. This security lapse enables unauthorized users to gain access and perform actions without proper credentials, posing significant risks to system integrity and user privacy. Organizations using affected versions are urged to implement strong password policies and update to a secure version to mitigate potential breaches.

References

http://www.iss.net/security_center/static/9347.php

vdb-entryx_refsource_XF

http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail...

third-party-advisoryx_refsource_ISS

http://www.polycom.com/common/pw_item_show_doc/0%2C%2C144...

x_refsource_CONFIRM

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 7, 2003
Vulnerability Reserved
Jun 17, 2002