CVE-2002-1558

Currently unrated

Key Information:

Vendor: Cisco
Status: Optical Networking Systems Software
Vendor: CVE Published:; 31 March 2003

Summary

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet.

References

http://www.iss.net/security_center/static/10510.php

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/6083

vdb-entryx_refsource_BID

http://www.cisco.com/warp/public/707/ons-multiple-vuln-pu...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Mar 31, 2003
Vulnerability Reserved
Mar 4, 2003