CVE Vulnerabilities

CVE-2004-1436

Published: Dec 31, 2004 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

Affected Software

Name Vendor Start Version End Version
Optical_networking_systems_software Cisco 1.0 1.0
Optical_networking_systems_software Cisco 1.1 1.1
Optical_networking_systems_software Cisco 1.1(0) 1.1(0)
Optical_networking_systems_software Cisco 1.1(1) 1.1(1)
Optical_networking_systems_software Cisco 1.3(0) 1.3(0)
Optical_networking_systems_software Cisco 2.3(5) 2.3(5)
Optical_networking_systems_software Cisco 3.0 3.0
Optical_networking_systems_software Cisco 3.1.0 3.1.0
Optical_networking_systems_software Cisco 3.2 3.2
Optical_networking_systems_software Cisco 3.2.0 3.2.0
Optical_networking_systems_software Cisco 3.3.0 3.3.0
Optical_networking_systems_software Cisco 3.4.0 3.4.0
Optical_networking_systems_software Cisco 4.0(0) 4.0(0)
Optical_networking_systems_software Cisco 4.0(1) 4.0(1)
Optical_networking_systems_software Cisco 4.0(2) 4.0(2)
Optical_networking_systems_software Cisco 4.0.0 4.0.0
Optical_networking_systems_software Cisco 4.1(0) 4.1(0)
Optical_networking_systems_software Cisco 4.1(1) 4.1(1)
Optical_networking_systems_software Cisco 4.1(2) 4.1(2)
Optical_networking_systems_software Cisco 4.1(3) 4.1(3)
Optical_networking_systems_software Cisco 4.5 4.5
Optical_networking_systems_software Cisco 4.6(0) 4.6(0)
Optical_networking_systems_software Cisco 4.6(1) 4.6(1)

References