Lucene search
MitreCVE-2002-1629HistoryMar 26, 2005 - 5:00 a.m.
CVE-2002-1629
2005-03-2605:00:00
mitre
web.nvd.nist.gov
25
multi-tech
proxyserver
null password
remote attackers
administrative privileges
telnet
http
nvd
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.017
Percentile
87.6%
Multi-Tech ProxyServer products MTPSR1-100, MTPSR1-120, MTPSR1-202ST, MTPSR2-201, and MTPSR3-200 ship with a null password, which allows remote attackers to gain administrative privileges via Telnet or HTTP.
Affected configurations
Node
multi-techproxyserverMatchmtpsr1100
ORmulti-techproxyserverMatchmtpsr1120
ORmulti-techproxyserverMatchmtpsr1202st
ORmulti-techproxyserverMatchmtpsr2201
ORmulti-techproxyserverMatchmtpsr3200
| Vendor | Product | Version | CPE |
|---|---|---|---|
| multi-tech | proxyserver | mtpsr1 | cpe:2.3:h:multi-tech:proxyserver:mtpsr1:100:*:*:*:*:*:* |
| multi-tech | proxyserver | mtpsr1 | cpe:2.3:h:multi-tech:proxyserver:mtpsr1:120:*:*:*:*:*:* |
| multi-tech | proxyserver | mtpsr1 | cpe:2.3:h:multi-tech:proxyserver:mtpsr1:202st:*:*:*:*:*:* |
| multi-tech | proxyserver | mtpsr2 | cpe:2.3:h:multi-tech:proxyserver:mtpsr2:201:*:*:*:*:*:* |
| multi-tech | proxyserver | mtpsr3 | cpe:2.3:h:multi-tech:proxyserver:mtpsr3:200:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-1629
2005-03-26 05:00:00
nessus
nessus
MultiTech Proxy Server Default Null Password
2003-03-30 00:00:00
nvd
nvd
CVE-2002-1629
2002-12-31 05:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
7
Confidence
Low
EPSS
0.017
Percentile
87.6%
Related for CVE-2002-1629