Vulnerability Description
The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Thecus | N8800 Nas Server Firmware | 5.03.01 |
| Thecus | N8800 Nas Server | - |
Related Weaknesses (CWE)
References
- http://www.7elements.co.uk/news/cve-2013-5669/Exploit
- http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/Exploit
- http://www.kb.cert.org/vuls/id/105686US Government Resource
- http://www.7elements.co.uk/news/cve-2013-5669/Exploit
- http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/Exploit
- http://www.kb.cert.org/vuls/id/105686US Government Resource
FAQ
What is CVE-2013-5669?
CVE-2013-5669 is a vulnerability with a CVSS score of 7.8 (HIGH). The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network.
How severe is CVE-2013-5669?
CVE-2013-5669 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2013-5669?
Check the references section above for vendor advisories and patch information. Affected products include: Thecus N8800 Nas Server Firmware, Thecus N8800 Nas Server.