This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Polycom First view 2003-01-07
Product Viewstation H.323 Last view 2003-01-07
Version 6.5.1 Type Hardware
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:h:polycom:viewstation_h.323

Activity : Overall

Related : CVE

  Date Alert Description
5 2003-01-07 CVE-2002-0630

The Telnet service for Polycom ViewStation before 7.2.4 allows remote attackers to cause a denial of service (crash) via long or malformed ICMP packets.

5 2003-01-07 CVE-2002-0629

The Telnet service for Polycom ViewStation before 7.2.4 allows remote attackers to cause a denial of service (crash) via multiple connections to the server.

7.5 2003-01-07 CVE-2002-0628

The Telnet service for Polycom ViewStation before 7.2.4 does not restrict the number of failed login attempts, which makes it easier for remote attackers to guess usernames and passwords via a brute force attack.

7.5 2003-01-07 CVE-2002-0627

The Web server for Polycom ViewStation before 7.2.4 allows remote attackers to bypass authentication and read files via Unicode encoded requests.

10 2003-01-07 CVE-2002-0626

Polycom ViewStation before 7.2.4 has a default null password for the administrator account, which allows arbitrary users to conduct unauthorized activities.

CWE : Common Weakness Enumeration

%idName
100% (1) CWE-307 Improper Restriction of Excessive Authentication Attempts

Open Source Vulnerability Database (OSVDB)

id Description
11891 Polycom ViewStation Malformed ICMP Packet Telnet Service DoS
11890 Polycom ViewStation Telnet Service Connection Saturation DoS
11889 Polycom ViewStation Unlimited Telnet Attempts
11888 Polycom ViewStation Web Server Unicode Request Arbitrary File Access
11887 Polycom ViewStation Administrator Account Default Null Password