Vulnerability Description
Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitrary commands via a "dos" command.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Avirt | Avirt Gateway Suite | 4.2 |
References
- http://marc.info/?l=bugtraq&m=101131669102843&w=2
- http://marc.info/?l=bugtraq&m=101424723728817&w=2
- http://www.iss.net/security_center/static/7915.phpVendor Advisory
- http://www.securityfocus.com/bid/3901
- http://marc.info/?l=bugtraq&m=101131669102843&w=2
- http://marc.info/?l=bugtraq&m=101424723728817&w=2
- http://www.iss.net/security_center/static/7915.phpVendor Advisory
- http://www.securityfocus.com/bid/3901
FAQ
What is CVE-2002-0134?
CVE-2002-0134 is a vulnerability with a CVSS score of 7.5 (HIGH). Telnet proxy in Avirt Gateway Suite 4.2 does not require authentication for connecting to the proxy system itself, which allows remote attackers to list file contents of the proxy and execute arbitrar...
How severe is CVE-2002-0134?
CVE-2002-0134 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0134?
Check the references section above for vendor advisories and patch information. Affected products include: Avirt Avirt Gateway Suite.