Vulnerability Description
Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to all shared directories have been disabled.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iomega | Network Attached Storage | a300u |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0440.htmlVendor Advisory
- http://www.iss.net/security_center/static/10530.php
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0440.htmlVendor Advisory
- http://www.iss.net/security_center/static/10530.php
FAQ
What is CVE-2002-1863?
CVE-2002-1863 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to a...
How severe is CVE-2002-1863?
CVE-2002-1863 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-1863?
Check the references section above for vendor advisories and patch information. Affected products include: Iomega Network Attached Storage.