CVE-2004-1436

Currently unrated

Key Information:

Vendor: Cisco
Status: Optical Networking Systems Software
Vendor: CVE Published:; 31 December 2004

Summary

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

References

http://www.cisco.com/warp/public/707/cisco-sa-20040721-on...

vendor-advisoryx_refsource_CISCO

http://secunia.com/advisories/12117

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/10768

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
Feb 13, 2005
Vulnerability published
Dec 31, 2004