CVSS: 9.8EPSS: 11%CPEs: 6EXPL: 0CVE-2007-0931
https://notcve.org/view.php?id=CVE-2007-0931
14 Feb 2007 — Heap-based buffer overflow in the management interfaces in (1) Aruba Mobility Controllers 200, 800, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 allows remote attackers to cause a denial of service (process crash) and possibly execute arbitrary code via long credential strings. Un desbordamiento de búfer en la región heap de la memoria en las interfaces de administración de (1) Aruba Mobility Controllers 200, 800, 2400 y 6000 y (2) Alcatel-Lucent OmniAccess Wireless 43xx y 6000 pe... • http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052380.html •
CVSS: 9.8EPSS: 3%CPEs: 6EXPL: 1CVE-2007-0932 – Aruba Authentication Bypass / Insecure Transport / Tons of Issues
https://notcve.org/view.php?id=CVE-2007-0932
14 Feb 2007 — The (1) Aruba Mobility Controllers 200, 600, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN. Los (1) controladores Aruba Mobility versiones 200, 600, 2400 y 6000 y (2) Alcatel-Lucent OmniAccess Wireless versiones 43xx y 6000 implementan de manera inapropiada la autenticación y la asignación de privilegios para la cuent... • https://packetstorm.news/files/id/136997 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.8EPSS: 12%CPEs: 1EXPL: 1CVE-2003-1108
https://notcve.org/view.php?id=CVE-2003-1108
31 Dec 2003 — The Session Initiation Protocol (SIP) implementation in Alcatel OmniPCX Enterprise 5.0 Lx allows remote attackers to cause a denial of service and possibly execute arbitrary code via crafted INVITE messages, as demonstrated by the OUSPG PROTOS c07-sip test suite. • http://www.cert.org/advisories/CA-2003-06.html •
CVSS: 10.0EPSS: 0%CPEs: 1EXPL: 0CVE-2002-1691
https://notcve.org/view.php?id=CVE-2002-1691
31 Dec 2002 — Alcatel OmniPCX 4400 installs known user accounts and passwords in the /etc/password file by default, which allows remote attackers to gain unauthorized access. • http://marc.info/?l=bugtraq&m=101413767925869&w=2 •
CVSS: 5.3EPSS: 0%CPEs: 13EXPL: 0CVE-2002-2148
https://notcve.org/view.php?id=CVE-2002-2148
31 Dec 2002 — Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard (UDP port 9) packet, which causes the device to leak the information in the response. • http://online.securityfocus.com/archive/1/284650 •
CVSS: 7.5EPSS: 3%CPEs: 3EXPL: 2CVE-2002-2149 – Lucent Access Point 300/600/1500 IP Services Router - Long HTTP Request Denial of Service
https://notcve.org/view.php?id=CVE-2002-2149
31 Dec 2002 — Buffer overflow in Lucent Access Point 300, 600, and 1500 Service Routers allows remote attackers to cause a denial of service (reboot) via a long HTTP request to the administrative interface. • https://www.exploit-db.com/exploits/21656 •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0293
https://notcve.org/view.php?id=CVE-2002-0293
03 May 2002 — FTP service in Alcatel OmniPCX 4400 allows the "halt" user to gain root privileges by modifying root's .profile file. El servicio FTP en Alcatel OmniPCX 4400 permite al usuario "halt" ganar privilegios de root modificando el fichero de root .profile. • http://marc.info/?l=bugtraq&m=101413767925869&w=2 •
CVSS: 9.8EPSS: 7%CPEs: 15EXPL: 2CVE-2002-0236 – Lucent 8.x - VitalNet Password Authentication Bypass
https://notcve.org/view.php?id=CVE-2002-0236
03 May 2002 — Lucent VitalSuite 8.0 through 8.2, including VitalNet, VitalEvent, and VitalHelp/VitalAnalysis, allows remote attackers to bypass authentication via a direct HTTP request to the VsSetCookie.exe program, which returns a valid cookie for the desired user. Lucent VitalSuite 8.0 hasta 8.2, incluyendo VitalNet, VitalEvent, y VitalHelp/VitalAnalysis, permite a atacantes remotos que se salten la autentificación por medio de una petición HTTP directa al programa VsSetCookie.exe, el cual retorna una cookie válida pa... • https://www.exploit-db.com/exploits/21203 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0294
https://notcve.org/view.php?id=CVE-2002-0294
03 May 2002 — Alcatel 4400 installs the /chetc/shutdown command with setgid privileges, which allows many different local users to shut down the system. Alcatel 4400 instala el comando /chetc/shutdown con privilegios setgid, lo que permite a muchos usuarios locales apagar el sistema. • http://marc.info/?l=bugtraq&m=101413767925869&w=2 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2002-0295
https://notcve.org/view.php?id=CVE-2002-0295
03 May 2002 — Alcatel OmniPCX 4400 installs files with world-writable permissions, which allows local users to reconfigure the system and possibly gain privileges. Alcatel OmniPCX 4400 instala ficheros con permisos de escritura para todos los usuarios, lo que permite a usuarios locales reconfigurar el sistema y posiblemente ganar privilegios. • http://marc.info/?l=bugtraq&m=101413767925869&w=2 •