Vulnerability CVE-2013-6035
Published: 2014-02-04

Description:
The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite terminals does not require authentication for sessions on TCP port 1827, which allows remote attackers to execute arbitrary code via unspecified protocol operations.

Type:

CWE-287

 (Improper Authentication)

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Thuraya telecommunications -> IP 
Japan radio -> Jue-250 
Japan radio -> Jue-500 
Inmarsat -> Inmarsat 
Hughes network systems -> 9201 
Hughes network systems -> 9450 
Hughes network systems -> 9502 
Harris -> BGAN 
Gatehouse -> Gatehouse 

 References:
http://www.kb.cert.org/vuls/id/250358
Copyright 2024, cxsecurity.com

 

Back to Top