Vulnerability Description
Polycom ViewStation before 7.2.4 has a default null password for the administrator account, which allows arbitrary users to conduct unauthorized activities.
CVSS Score
10.0
HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Polycom | Viewstation 128 | 6.5.1 |
| Polycom | Viewstation 512 | 6.5.1 |
| Polycom | Viewstation Dcp | 6.5.1 |
| Polycom | Viewstation Fx Vs4000 | 4.1.5 |
| Polycom | Viewstation H.323 | 6.5.1 |
| Polycom | Viewstation Mp | 6.5.1 |
| Polycom | Viewstation Sp 384 | 6.5.1 |
| Polycom | Viewstation V.35 | 6.5.1 |
References
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089
- http://www.ciac.org/ciac/bulletins/m-123.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/9347.phpVendor Advisory
- http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf
- http://www.securityfocus.com/bid/5631Vendor Advisory
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089
- http://www.ciac.org/ciac/bulletins/m-123.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/9347.phpVendor Advisory
- http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf
- http://www.securityfocus.com/bid/5631Vendor Advisory
FAQ
What is CVE-2002-0626?
CVE-2002-0626 is a vulnerability with a CVSS score of 10.0 (HIGH). Polycom ViewStation before 7.2.4 has a default null password for the administrator account, which allows arbitrary users to conduct unauthorized activities.
How severe is CVE-2002-0626?
CVE-2002-0626 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0626?
Check the references section above for vendor advisories and patch information. Affected products include: Polycom Viewstation 128, Polycom Viewstation 512, Polycom Viewstation Dcp, Polycom Viewstation Fx Vs4000, Polycom Viewstation H.323.