Unauthorized Access Vulnerability in Cisco ONS Products
CVE-2004-0308

Currently unrated

Key Information:

Vendor: Cisco
Status: Optical Networking Systems Software
Vendor: CVE Published:; 24 November 2004

Summary

An unknown vulnerability exists in multiple Cisco ONS products that potentially allows a superuser with a locked, disabled, or suspended account to gain unauthorized access through a Telnet connection to the VxWorks shell. This issue could enable an attacker to exploit system administrative privileges and compromise the integrity and security of the affected devices.

References

http://www.cisco.com/warp/public/707/cisco-sa-20040219-ON...

vendor-advisoryx_refsource_CISCO

https://exchange.xforce.ibmcloud.com/vulnerabilities/15266

vdb-entryx_refsource_XF

http://www.osvdb.org/4010

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Nov 24, 2004
Vulnerability Reserved
Mar 17, 2004