CVE-2002-0628

Name: CVE-2002-0628
Creator: NVD / NIST
Published: 2003-01-07T05:00:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10EPSS 2.19%

Last modified Jun 16, 2026

CVE-2002-0628 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.. EPSS estimates a 2.19% chance of exploitation in the next 30 days.

Description

The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

EPSS Probability

2.19%

80.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-307

Affected Software

Vendor	Product	Versions
Polycom	Viewstation 128	6.5.1
Polycom	Viewstation 128	7.2
Polycom	Viewstation 512	6.5.1
Polycom	Viewstation 512	7.2
Polycom	Viewstation Dcp	6.5.1
Polycom	Viewstation Dcp	7.2
Polycom	Viewstation Fx Vs4000	4.1.5
Polycom	Viewstation H.323	6.5.1
Polycom	Viewstation H.323	7.2
Polycom	Viewstation Mp	6.5.1
Polycom	Viewstation Mp	7.2
Polycom	Viewstation Sp 384	6.5.1
Polycom	Viewstation Sp 384	7.2
Polycom	Viewstation V.35	6.5.1
Polycom	Viewstation V.35	7.2

References

http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089Broken Link
http://www.ciac.org/ciac/bulletins/m-123.shtmlBroken Link, Patch, Vendor Advisory
http://www.iss.net/security_center/static/9349.phpBroken Link, Vendor Advisory
http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdfProduct
http://www.securityfocus.com/bid/5635Broken Link, Third Party Advisory, VDB Entry, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/44241Third Party Advisory, VDB Entry
http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089Broken Link
http://www.ciac.org/ciac/bulletins/m-123.shtmlBroken Link, Patch, Vendor Advisory
http://www.iss.net/security_center/static/9349.phpBroken Link, Vendor Advisory
http://www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdfProduct
http://www.securityfocus.com/bid/5635Broken Link, Third Party Advisory, VDB Entry, Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/44241Third Party Advisory, VDB Entry

Timeline

Published: Jan 7, 2003
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2002-0628?

How severe is CVE-2002-0628?

CVE-2002-0628 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 2.19% probability of exploitation in the next 30 days.

How do I fix CVE-2002-0628?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2002-0628?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST