Vulnerability Description
The Web server for Polycom ViewStation before 7.2.4 allows remote attackers to bypass authentication and read files via Unicode encoded requests.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Polycom | Viewstation 128 | 6.5.1 |
| Polycom | Viewstation 512 | 6.5.1 |
| Polycom | Viewstation Dcp | 6.5.1 |
| Polycom | Viewstation Fx Vs4000 | 4.1.5 |
| Polycom | Viewstation H.323 | 6.5.1 |
| Polycom | Viewstation Mp | 6.5.1 |
| Polycom | Viewstation Sp 384 | 6.5.1 |
| Polycom | Viewstation V.35 | 6.5.1 |
References
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089
- http://www.ciac.org/ciac/bulletins/m-123.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/9348.phpVendor Advisory
- http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf
- http://www.securityfocus.com/bid/5632Vendor Advisory
- http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089
- http://www.ciac.org/ciac/bulletins/m-123.shtmlPatchVendor Advisory
- http://www.iss.net/security_center/static/9348.phpVendor Advisory
- http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf
- http://www.securityfocus.com/bid/5632Vendor Advisory
FAQ
What is CVE-2002-0627?
CVE-2002-0627 is a vulnerability with a CVSS score of 7.5 (HIGH). The Web server for Polycom ViewStation before 7.2.4 allows remote attackers to bypass authentication and read files via Unicode encoded requests.
How severe is CVE-2002-0627?
CVE-2002-0627 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0627?
Check the references section above for vendor advisories and patch information. Affected products include: Polycom Viewstation 128, Polycom Viewstation 512, Polycom Viewstation Dcp, Polycom Viewstation Fx Vs4000, Polycom Viewstation H.323.