Lucene search

MitreCVE-2002-0627

HistorySep 01, 2004 - 4:00 a.m.

CVE-2002-0627

2004-09-0104:00:00

mitre

web.nvd.nist.gov

cve-2002-0627

web server

polycom viewstation

authentication bypass

remote attack

file reading

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.005

Percentile

76.0%

JSON

The Web server for Polycom ViewStation before 7.2.4 allows remote attackers to bypass authentication and read files via Unicode encoded requests.

Affected configurations

Nvd

Node

polycomviewstation_128Match6.5.1

polycomviewstation_128Match7.2

polycomviewstation_512Match6.5.1

polycomviewstation_512Match7.2

polycomviewstation_dcpMatch6.5.1

polycomviewstation_dcpMatch7.2

polycomviewstation_fx_vs4000Match4.1.5

polycomviewstation_h.323Match6.5.1

polycomviewstation_h.323Match7.2

polycomviewstation_mpMatch6.5.1

polycomviewstation_mpMatch7.2

polycomviewstation_sp_384Match6.5.1

polycomviewstation_sp_384Match7.2

polycomviewstation_v.35Match6.5.1

polycomviewstation_v.35Match7.2

VendorProductVersionCPE
polycomviewstation_1286.5.1cpe:2.3:h:polycom:viewstation_128:6.5.1:*:*:*:*:*:*:*
polycomviewstation_1287.2cpe:2.3:h:polycom:viewstation_128:7.2:*:*:*:*:*:*:*
polycomviewstation_5126.5.1cpe:2.3:h:polycom:viewstation_512:6.5.1:*:*:*:*:*:*:*
polycomviewstation_5127.2cpe:2.3:h:polycom:viewstation_512:7.2:*:*:*:*:*:*:*
polycomviewstation_dcp6.5.1cpe:2.3:h:polycom:viewstation_dcp:6.5.1:*:*:*:*:*:*:*
polycomviewstation_dcp7.2cpe:2.3:h:polycom:viewstation_dcp:7.2:*:*:*:*:*:*:*
polycomviewstation_fx_vs40004.1.5cpe:2.3:h:polycom:viewstation_fx_vs4000:4.1.5:*:*:*:*:*:*:*
polycomviewstation_h.3236.5.1cpe:2.3:h:polycom:viewstation_h.323:6.5.1:*:*:*:*:*:*:*
polycomviewstation_h.3237.2cpe:2.3:h:polycom:viewstation_h.323:7.2:*:*:*:*:*:*:*
polycomviewstation_mp6.5.1cpe:2.3:h:polycom:viewstation_mp:6.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
polycom	viewstation_128	6.5.1	cpe:2.3:h:polycom:viewstation_128:6.5.1:::::::*
polycom	viewstation_128	7.2	cpe:2.3:h:polycom:viewstation_128:7.2:::::::*
polycom	viewstation_512	6.5.1	cpe:2.3:h:polycom:viewstation_512:6.5.1:::::::*
polycom	viewstation_512	7.2	cpe:2.3:h:polycom:viewstation_512:7.2:::::::*
polycom	viewstation_dcp	6.5.1	cpe:2.3:h:polycom:viewstation_dcp:6.5.1:::::::*
polycom	viewstation_dcp	7.2	cpe:2.3:h:polycom:viewstation_dcp:7.2:::::::*
polycom	viewstation_fx_vs4000	4.1.5	cpe:2.3:h:polycom:viewstation_fx_vs4000:4.1.5:::::::*
polycom	viewstation_h.323	6.5.1	cpe:2.3:h:polycom:viewstation_h.323:6.5.1:::::::*
polycom	viewstation_h.323	7.2	cpe:2.3:h:polycom:viewstation_h.323:7.2:::::::*
polycom	viewstation_mp	6.5.1	cpe:2.3:h:polycom:viewstation_mp:6.5.1:::::::*

Rows per page:

1-10 of 151

References

bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21089

www.ciac.org/ciac/bulletins/m-123.shtml

www.iss.net/security_center/static/9348.php

www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdf

www.securityfocus.com/bid/5632

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

7.4

Confidence

Low

EPSS

0.005

Percentile

76.0%

JSON

Related for CVE-2002-0627