CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 0CVE-2002-1558
https://notcve.org/view.php?id=CVE-2002-1558
Cisco ONS15454 and ONS15327 running ONS before 3.4 have an account for the VxWorks Operating System in the TCC, TCC+ and XTC that cannot be changed or disabled, which allows remote attackers to gain privileges by connecting to the account via Telnet. • http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10510.php http://www.securityfocus.com/bid/6083 •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2002-1556
https://notcve.org/view.php?id=CVE-2002-1556
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset) via an HTTP request to the TCC, TCC+ or XTC, in which the request contains an invalid CORBA Interoperable Object Reference (IOR). • http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10508.php http://www.securityfocus.com/bid/6084 •
CVSS: 5.0EPSS: 0%CPEs: 5EXPL: 0CVE-2002-1557
https://notcve.org/view.php?id=CVE-2002-1557
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows attackers to cause a denial of service (reset to TCC, TCC+, TCCi or XTC) via a malformed HTTP request that does not contain a leading / (slash) character. • http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10509.php http://www.securityfocus.com/bid/6082 •
CVSS: 7.5EPSS: 0%CPEs: 5EXPL: 0CVE-2002-1553
https://notcve.org/view.php?id=CVE-2002-1553
Cisco ONS15454 and ONS15327 running ONS before 3.4 allows remote attackers to modify the system configuration and delete files by establishing an FTP connection to the TCC, TCC+ or XTC using a username and password that does not exist. • http://www.cisco.com/warp/public/707/ons-multiple-vuln-pub.shtml http://www.iss.net/security_center/static/10505.php http://www.securityfocus.com/bid/6076 •