Vulnerability Description
Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) add spurious IDS rules to sensors, as demonstrated using addrule.c.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Applied Watch Technologies | Applied Watch Command Center | 1.0 |
References
- http://marc.info/?l=bugtraq&m=107004362416252&w=2
- http://marc.info/?l=bugtraq&m=107005523025918&w=2
- http://marc.info/?l=bugtraq&m=107031196324376&w=2
- http://www.bugtraq.org/advisories/_BSSADV-0000.txt
- http://www.securityfocus.com/bid/9124ExploitPatchVendor Advisory
- http://marc.info/?l=bugtraq&m=107004362416252&w=2
- http://marc.info/?l=bugtraq&m=107005523025918&w=2
- http://marc.info/?l=bugtraq&m=107031196324376&w=2
- http://www.bugtraq.org/advisories/_BSSADV-0000.txt
- http://www.securityfocus.com/bid/9124ExploitPatchVendor Advisory
FAQ
What is CVE-2003-0974?
CVE-2003-0974 is a vulnerability with a CVSS score of 7.5 (HIGH). Applied Watch Command Center allows remote attackers to conduct unauthorized activities without authentication, such as (1) add new users to a console, as demonstrated using appliedsnatch.c, or (2) ad...
How severe is CVE-2003-0974?
CVE-2003-0974 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0974?
Check the references section above for vendor advisories and patch information. Affected products include: Applied Watch Technologies Applied Watch Command Center.