Vulnerability Description
Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cobham | Sailor 900 Firmware | 1.08_mfhf |
| Cobham | Sailor 900 Vsat | - |
| Cobham | Sailor 6000 Series Firmware | 1.08_mfhf |
| Cobham | Ailor 6110 Mini-C Gmdss | - |
| Cobham | Sailor 6006 Message Terminal | - |
| Cobham | Sailor 6222 Vhf | - |
| Cobham | Sailor 6300 Mf \/ Hf | - |
References
- http://www.kb.cert.org/vuls/id/460687Third Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/460687Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2014-2940?
CVE-2014-2940 is a vulnerability with a CVSS score of 10.0 (HIGH). Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by...
How severe is CVE-2014-2940?
CVE-2014-2940 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-2940?
Check the references section above for vendor advisories and patch information. Affected products include: Cobham Sailor 900 Firmware, Cobham Sailor 900 Vsat, Cobham Sailor 6000 Series Firmware, Cobham Ailor 6110 Mini-C Gmdss, Cobham Sailor 6006 Message Terminal.