Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-2048
HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-2048

2005-05-1004:00:00
mitre
web.nvd.nist.gov
21
cve-2004-2048
radmin
esesix thintune
thin clients
firmware
vulnerability
remote access

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7

Confidence

Low

EPSS

0.014

Percentile

86.7%

JSON

radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default “jstwo” password, which allows remote attackers to gain access.

Affected configurations

Nvd
Node
esesixthintune_extremeMatch2.4.38
OR
esesixthintune_lMatch2.4.38
OR
esesixthintune_mMatch2.4.38
OR
esesixthintune_mobileMatch2.4.38
OR
esesixthintune_sMatch2.4.38
OR
esesixthintune_xmMatch2.4.38
OR
esesixthintune_xsMatch2.4.38
VendorProductVersionCPE
esesixthintune_extreme2.4.38cpe:2.3:h:esesix:thintune_extreme:2.4.38:*:*:*:*:*:*:*
esesixthintune_l2.4.38cpe:2.3:h:esesix:thintune_l:2.4.38:*:*:*:*:*:*:*
esesixthintune_m2.4.38cpe:2.3:h:esesix:thintune_m:2.4.38:*:*:*:*:*:*:*
esesixthintune_mobile2.4.38cpe:2.3:h:esesix:thintune_mobile:2.4.38:*:*:*:*:*:*:*
esesixthintune_s2.4.38cpe:2.3:h:esesix:thintune_s:2.4.38:*:*:*:*:*:*:*
esesixthintune_xm2.4.38cpe:2.3:h:esesix:thintune_xm:2.4.38:*:*:*:*:*:*:*
esesixthintune_xs2.4.38cpe:2.3:h:esesix:thintune_xs:2.4.38:*:*:*:*:*:*:*

Related

cvelist 1
nvd 1
openvas 2
cvelist
cvelist
CVE-2004-2048
2005-05-10 04:00:00
nvd
nvd
CVE-2004-2048
2004-12-31 05:00:00
openvas
openvas
eSeSIX Thintune Thin Client Multiple Vulnerabilities
2005-11-03 00:00:00
eSeSIX Thintune Thin Client Multiple Vulnerabilities
2005-11-03 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7

Confidence

Low

EPSS

0.014

Percentile

86.7%

JSON
Related for CVE-2004-2048
cvelist1nvd1openvas2