Vulnerability Description
Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code, and then leveraging physical access or terminal access to enter this code.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cobham | Aviator 700D | - |
| Cobham | Aviator 700E | - |
Related Weaknesses (CWE)
References
- http://www.kb.cert.org/vuls/id/882207Third Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/882207Third Party AdvisoryUS Government Resource
FAQ
What is CVE-2014-2942?
CVE-2014-2942 is a vulnerability with a CVSS score of 7.2 (HIGH). Cobham Aviator 700D and 700E satellite terminals use an improper algorithm for PIN codes, which makes it easier for attackers to obtain a privileged terminal session by calculating the superuser code,...
How severe is CVE-2014-2942?
CVE-2014-2942 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2014-2942?
Check the references section above for vendor advisories and patch information. Affected products include: Cobham Aviator 700D, Cobham Aviator 700E.