| |
Vulnerability CVE-2002-1863
Published: 2002-12-31 Modified: 2012-02-12
| Description: |
Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to all shared directories have been disabled. |
CVSS2 => (AV:L/AC:L/Au:N/C:P/I:P/A:P)
| CVSS Base Score |
Impact Subscore |
Exploitability Subscore |
4.6/10 |
6.4/10 |
3.9/10 |
| Exploit range |
Attack complexity |
Authentication |
Local |
Low |
No required |
| Confidentiality impact |
Integrity impact |
Availability impact |
Partial |
Partial |
Partial |
References: |
http://www.iss.net/security_center/static/10530.php
http://archives.neohapsis.com/archives/bugtraq/2002-10/0440.html
|
|
|
Copyright 2024, cxsecurity.com
|
|
|
