CVE-2004-0308
Last modified
CVE-2004-0308 is a vulnerability of currently unknown severity. Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.. EPSS estimates a 1.75% chance of exploitation in the next 30 days.
Description
Unknown vulnerability in Cisco ONS 15327 before 4.1(3), ONS 15454 before 4.6(1), ONS 15454 SD before 4.1(3), and Cisco ONS15600 before 1.3(0) allows a superuser whose account is locked out, disabled, or suspended to gain unauthorized access via a Telnet connection to the VxWorks shell.
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Optical Networking Systems Software | 1.0 |
| Cisco | Optical Networking Systems Software | 4.0\(1\) |
| Cisco | Optical Networking Systems Software | 4.0\(2\) |
| Cisco | Optical Networking Systems Software | 4.0.0 |
| Cisco | Optical Networking Systems Software | 4.1\(0\) |
| Cisco | Optical Networking Systems Software | 4.1\(1\) |
| Cisco | Optical Networking Systems Software | 4.1\(2\) |
| Cisco | Optical Networking Systems Software | 4.1\(3\) |
| Cisco | Optical Networking Systems Software | 4.1.0 |
| Cisco | Optical Networking Systems Software | 4.5 |
References
- http://www.cisco.com/warp/public/707/cisco-sa-20040219-ONS.shtmlPatch, Vendor Advisory
- http://www.securityfocus.com/bid/9699Patch, Vendor Advisory
- http://www.cisco.com/warp/public/707/cisco-sa-20040219-ONS.shtmlPatch, Vendor Advisory
- http://www.securityfocus.com/bid/9699Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-0308?
How severe is CVE-2004-0308?
How do I fix CVE-2004-0308?
Are you affected by CVE-2004-0308?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST