CyberSec.Space Logo
CVEブラウザに戻る

CVE-2002-1558

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0670%
EPSS Percentile7.72th
Published2003年3月31日
Last Modified2026年4月16日

Vulnerability Description

Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet.

Affected Platforms (CPE)

📦
Cisco

Optical Networking Systems Software

= 3.0
📦
Cisco

Optical Networking Systems Software

= 3.1.0
📦
Cisco

Optical Networking Systems Software

= 3.2
📦
Cisco

Optical Networking Systems Software

= 3.2.0
📦
Cisco

Optical Networking Systems Software

= 3.3.0

References & Advisories

🔗 http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml
🔗 http://www.iss.net/security_center/static/10510.php
🔗 http://www.securityfocus.com/bid/6083
🔗 http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml
🔗 http://www.iss.net/security_center/static/10510.php
🔗 http://www.securityfocus.com/bid/6083

関連する脆弱性情報

CVE-2002-074710.0

Buffer overflow in lsmcode in AIX 4.3.3.

CVE-2002-001310.0

Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote attackers to cause a denial ...

CVE-2002-135910.0

Multiple SSH2 servers and clients do not properly handle large packets or large fields, which may allow remote attackers to cause ...

CVE-2002-001210.0

Vulnerabilities in a large number of SNMP implementations allow remote attackers to cause a denial of service or gain privileges v...