CyberSec.Space Logo
Back to CVE Browser

CVE-2006-0374

HIGH
7.5
CVSS Severity Score
EPSS Score0.1680%
EPSS Percentile5.85th
PublishedJan 22, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which (1) might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB remote debugging ONCRPC (aka wdbrpc) on UDP 17185, (2) reflect network data using echo (TCP 7), or (3) gain access without authentication using rlogin (TCP 513).

Affected Platforms (CPE)

πŸ”Œ
Advantage Century Telecommunication

P202s

= 1.01.21_firmware_1.1.21

References & Advisories

πŸ”— http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
πŸ”— http://secunia.com/advisories/18514
πŸ”— http://www.securityfocus.com/bid/16288
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24149
πŸ”— http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
πŸ”— http://secunia.com/advisories/18514
πŸ”— http://www.securityfocus.com/bid/16288
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24149

Related Vulnerabilities

CVE-2006-03755.0

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 on VxWorks uses a hardcoded Network Time ...

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...

CVE-2006-623510.0

A "stack overwrite" vulnerability in GnuPG (gpg) 1.x before 1.4.6, 2.x before 2.0.2, and 1.9.0 through 1.9.95 allows attackers to ...

CVE-2006-011910.0

Multiple unspecified vulnerabilities in IBM Lotus Notes and Domino Server before 6.5.5 have unknown impact and attack vectors, due...