Vulnerability Description
NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic.
CVSS Score
6.4
MEDIUM
AV:N/AC:L/Au:N/C:P/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Arescom | Netdsl | 800 |
| Microsoft | Network Firmware | 5.5.11 |
Related Weaknesses (CWE)
References
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00416.html
- http://www.iss.net/security_center/static/10498.php
- http://www.securityfocus.com/bid/6064
- http://cert.uni-stuttgart.de/archive/bugtraq/2002/10/msg00416.html
- http://www.iss.net/security_center/static/10498.php
- http://www.securityfocus.com/bid/6064
FAQ
What is CVE-2002-2380?
CVE-2002-2380 is a vulnerability with a CVSS score of 6.4 (MEDIUM). NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic.
How severe is CVE-2002-2380?
CVE-2002-2380 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-2380?
Check the references section above for vendor advisories and patch information. Affected products include: Arescom Netdsl, Microsoft Network Firmware.