CVE-2002-1968

Sažetak

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.

Reference

http://archives.neohapsis.com/archives/bugtraq/2002-12/0017.html
http://securitytracker.com/id?1005524
http://www.iss.net/security_center/static/10543.php

CVSS

Base:	2.1
Impact:	2.9
Exploitability:	3.9

Pristup

Vektor	Složenost	Autentikacija
LOCAL	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:L/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:31

Objavljeno

31-12-2002 - 05:00