Vulnerability Description
The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the firmware, via a direct request to an unspecified page.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Scientific Atlanta Webstar Dpc2100R2 | 2.0.2r1256-060303 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0322.htmlExploit
- http://www.securityfocus.com/bid/40346Exploit
- http://archives.neohapsis.com/archives/fulldisclosure/2010-05/0322.htmlExploit
- http://www.securityfocus.com/bid/40346Exploit
FAQ
What is CVE-2010-2026?
CVE-2010-2026 is a vulnerability with a CVSS score of 6.4 (MEDIUM). The web interface on the Cisco Scientific Atlanta WebSTAR DPC2100R2 cable modem with firmware 2.0.2r1256-060303 allows remote attackers to bypass authentication, and reset the modem or replace the fir...
How severe is CVE-2010-2026?
CVE-2010-2026 has been rated MEDIUM with a CVSS base score of 6.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2026?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Scientific Atlanta Webstar Dpc2100R2.