CVE-1999-1508 — HIGH (10.0)

Vulnerability Description

Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Tek	Phaser Network Printer 740	All versions
Tek	Phaser Network Printer 750	All versions
Tek	Phaser Network Printer 750Dp	All versions
Tek	Phaser Network Printer 840	All versions
Tek	Phaser Network Printer 930	All versions

References

http://marc.info/?l=bugtraq&m=94286041430870&w=2
http://www.securityfocus.com/bid/806ExploitPatchVendor Advisory
http://marc.info/?l=bugtraq&m=94286041430870&w=2
http://www.securityfocus.com/bid/806ExploitPatchVendor Advisory

FAQ

What is CVE-1999-1508?

CVE-1999-1508 is a vulnerability with a CVSS score of 10.0 (HIGH). Web server in Tektronix PhaserLink Printer 840.0 and earlier allows a remote attacker to gain administrator access by directly calling undocumented URLs such as ncl_items.html and ncl_subjects.html.

How severe is CVE-1999-1508?

CVE-1999-1508 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-1999-1508?

Check the references section above for vendor advisories and patch information. Affected products include: Tek Phaser Network Printer 740, Tek Phaser Network Printer 750, Tek Phaser Network Printer 750Dp, Tek Phaser Network Printer 840, Tek Phaser Network Printer 930.