Vulnerability Description
Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Optical Networking Systems Software | 1.0 |
References
- http://www.cisco.com/warp/public/707/cisco-sa-20040219-ONS.shtmlPatchVendor Advisory
- http://www.osvdb.org/4010
- http://www.securityfocus.com/bid/9699PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15266
- http://www.cisco.com/warp/public/707/cisco-sa-20040219-ONS.shtmlPatchVendor Advisory
- http://www.osvdb.org/4010
- http://www.securityfocus.com/bid/9699PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15266
FAQ
What is CVE-2004-0308?
CVE-2004-0308 is a vulnerability with a CVSS score of 10.0 (HIGH). Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, ...
How severe is CVE-2004-0308?
CVE-2004-0308 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0308?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Optical Networking Systems Software.