Back to search
CVE-2004-1436
Published: Feb 13, 2005
Modified: Aug 8, 2024
PUBLISHED
Description
The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20040721 Cisco ONS 15327, ONS 15454, ONS 15454 SDH, and ONS 15600 Malformed Packet Vulnerabilities
vendor-advisory
x_refsource_CISCO
12117
third-party-advisory
x_refsource_SECUNIA
10768
vdb-entry
x_refsource_BID
VU#760432
third-party-advisory
x_refsource_CERT-VN
cisco-ons-tl1-auth-bypass(16766)
vdb-entry
x_refsource_XF
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now