Details Affected devices may have the root account enabled and configured with a well-known default password. Also supports the T. Impact The vulnerability could allow a remote attacker to take complete control of an affected device. Do you need a help? Provides a more robust protocol for fax transmission over packet networks. Figure 3 shows the applications that will be embedded. For this vulnerability to be exploited, a remote attacker must either entice an administrator to access a crafted link or perform a man-in-the-middle attack, intercepting an authenticated session.
| Uploader: | Narn |
| Date Added: | 21 February 2007 |
| File Size: | 15.86 Mb |
| Operating Systems: | Windows NT/2000/XP/2003/2003/7/8/10 MacOS 10/X |
| Downloads: | 5959 |
| Price: | Free* [*Free Regsitration Required] |
This document is Cisco Public Information. If a factory reset or software upgrade occurred or certain manual configuration changes were made, the device may not be tirmware.
The Cisco Small Business Support Community, an online forum, enables small business customers to collaborate with their peers to get answers and solve problems.
We use cookies to ensure that we give you the best experience on our website. Impact The vulnerability could allow a remote attacker to take complete control of an affected device.
Data Sheet Cisco SRP Series Services Ready Platforms Flexible, Cost-Effective Customer Premises Equipment for Small Business Demand for managed services is expected to grow dramatically over the next four years, with small businesses those with fewer than employees - expected to make up more than half of this market opportunity.
To meet this opportunity, service providers are transforming their networks, using services-ready platforms to deliver an array of profitable IP-based communications services.
The Serial Number Validator tool will indicate if the device was affected when the product was shipped.
Do you want to use VulDB in your project?
This change was accompanied by the release of Cisco Security Advisory cisco-satandberg. The vulnerability can be exploited via a remote session to the Services Ready Platform Configuration Utility web interface. Join us on Youtube! This account is intended to be enabled by device administrators when certain debugging actions need to be performed and should be disabled by default.
Administrators can determine the status of their device by using the Serial Number Validator located firmwarf the following link: These platforms will help enable service providers to deliver differentiated, converged service offers that increase bandwidth usage and average revenue per user while reducing customer churn.
Do you need a help? An article by Fabio Semperboni Security Advisory. Also supports the T. Share on Digg Share. Random Posts Banner, what is that? Interoperability firmeare industry-leading soft switches, and voice gateways to enable scalable, end-to-end multiservice network deployments. frimware
CVE :: Infosec - CERT-PA
Cisco Product Quick Reference Guide. Related Posts A Ghost in the device? Follow Us on Twitter! Join us on LinkedIn!
They look to service providers for a flexible infrastructure and simplified management, along with better quality and reliability than they can achieve in-house. The optional Cisco Small Business Support Services delivers 3-year peace of mind support with telephone and chat support, software updates as available, and next-business-day advanced hardware replacement, as needed.
VLAN support allows for highly secure segmentation of network resources. Impact Successful exploitation of the vulnerability may result in the execution of arbitrary commands on the device. Share on Facebook Share. Fax and modem Table 4. This access may include modifying the configuration or security of the device and could allow the attacker to load arbitrary software on an affected unit.
Page 3 of 8 Data Sheet Table 2. Details Affected devices may have the root account enabled and configured with a well-known default password. For this vulnerability to be exploited, a remote attacker must either entice an administrator to access a crafted link or perform a man-in-the-middle attack, intercepting an authenticated session.
Share on LinkedIn Share.
Комментариев нет:
Отправить комментарий