Lucene search

MitreCVE-2002-1968

HistoryJun 28, 2005 - 4:00 a.m.

CVE-2002-1968

2005-06-2804:00:00

mitre

web.nvd.nist.gov

com21

doxport

cable modem

firmware

security vulnerability

tftp

local users

configuration modification

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Com21 DOXport 1100 series cable modem running firmware 2.1.1.106, and possibly other versions before 2.1.1.108.003, downloads a DOCSIS configuration file from a TFTP server running on the internal network, which allows local users to modify configuration of the modem via a malicious TFTP server.

Affected configurations

Nvd

Node

com21doxport_1100Match2.1.1.106

VendorProductVersionCPE
com21doxport_11002.1.1.106cpe:2.3:h:com21:doxport_1100:2.1.1.106:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
com21	doxport_1100	2.1.1.106	cpe:2.3:h:com21:doxport_1100:2.1.1.106:::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-12/0017.html

securitytracker.com/id?1005524

www.iss.net/security_center/static/10543.php

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.8

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2002-1968