CyberSec.Space Logo
CVEブラウザに戻る

CVE-2006-0374

HIGH
7.5
CVSS Severity Score
EPSS Score0.1680%
EPSS Percentile5.85th
Published2006年1月22日
Last Modified2026年4月16日

Vulnerability Description

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which (1) might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB remote debugging ONCRPC (aka wdbrpc) on UDP 17185, (2) reflect network data using echo (TCP 7), or (3) gain access without authentication using rlogin (TCP 513).

Affected Platforms (CPE)

🔌
Advantage Century Telecommunication

P202s

= 1.01.21_firmware_1.1.21

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
🔗 http://secunia.com/advisories/18514
🔗 http://www.securityfocus.com/bid/16288
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/24149
🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
🔗 http://secunia.com/advisories/18514
🔗 http://www.securityfocus.com/bid/16288
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/24149

関連する脆弱性情報

CVE-2006-03755.0

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 on VxWorks uses a hardcoded Network Time ...

CVE-2006-446110.0

Paessler IPCheck Server Monitor before 5.3.3.639/640 does not properly implement a "list of acceptable host IP addresses in the pr...

CVE-2006-607610.0

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier ...

CVE-2006-502510.0

Multiple unspecified vulnerabilities in Paisterist Simple HTTP Scanner (sHTTPScanner) before 0.2 have unknown impact and attack ve...