Avaya Cajun防火墙无正式文件默认账户漏洞

漏洞信息详情

Avaya Cajun防火墙无正式文件默认账户漏洞

• CNNVD编号：CNNVD-200210-302
• 危害等级： 高危
  
  
• CVE编号：
  CVE-2002-1229
  
• 漏洞类型：
  
  
  配置错误
  
• 发布时间：
  
  2002-10-28
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2005-10-20
  
• 厂        商：
  
  avaya
• 漏洞来源：
  Discovery credited…

Avaya Cajun switches P880， P882，P580，和P550R 5.2.14及其早期版本包含无正式文件账户(1)manufhe (2)带有默认密码的对话框。远程攻击者可以利用该漏洞提升特权。

Avaya has released updated firmware addressing this issue. Avaya Cajun Firmware 5.3.0 and later are not vulnerable to this issue:
Avaya Cajun P882 Series Firmware 5.2.14

• Avaya Cajun Firmware v5.3.0
  
  http://support.avaya.com

Avaya Cajun P880 Series Firmware 5.2.14

• Avaya Cajun Firmware v5.3.0
  
  http://support.avaya.com

Avaya Cajun P550R Series Firmware 5.2.14

• Avaya Cajun Firmware v5.3.0
  
  http://support.avaya.com

Avaya Cajun P580 Series Firmware 5.2.14

• Avaya Cajun Firmware v5.3.0
  
  http://support.avaya.com

来源:US-CERT Vulnerability Note: VU#482241
名称: VU#482241
链接:http://www.kb.cert.org/vuls/id/482241

来源: BID
名称: 5965
链接:http://www.securityfocus.com/bid/5965

来源: XF
名称: avaya-cajun-default-passwords(10374)
链接:http://www.iss.net/security_center/static/10374.php

来源: support.avaya.com
链接:http://support.avaya.com/japple/css/japple?PAGE=avaya.css.OpenPage&temp.template.name=Avaya_P580_P882_Undocumented

来源: BUGTRAQ
名称: 20021015 Undocumented account vulnerability in Avaya P550R/P580/P880/P882
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=103470243012971&w=2