Vulnerability Description
The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmware to TCP port 54321.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Iridium | Open Port | - |
| Iridium | Pilot Below Deck Equipment | - |
References
- http://www.kb.cert.org/vuls/id/578598Third Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/578598Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2014-0327?
CVE-2014-0327 is a vulnerability with a CVSS score of 9.3 (HIGH). The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmwar...
How severe is CVE-2014-0327?
CVE-2014-0327 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-0327?
Check the references section above for vendor advisories and patch information. Affected products include: Iridium Open Port, Iridium Pilot Below Deck Equipment.