CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2002-1147

The HTTP administration interface for HP Procurve 4000M Switch firmware before C.09.16, with stacking features and remote administration enabled, does not authenticate requests to reset the device, which allows remote attackers to cause a denial of service via a direct request to the device_reset CGI program.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.059

EPSS Ranking 90.3%

CVSS Severity

CVSS v2 Score 7.1

References

http://marc.info/?l=bugtraq&m=103287951910420&w=2
http://online.securityfocus.com/advisories/4501
http://www.iss.net/security_center/static/10172.php
http://www.securityfocus.com/bid/5784
http://www.tech-serve.com/research/advisories/2002/a092302-1.txt
http://marc.info/?l=bugtraq&m=103287951910420&w=2
http://online.securityfocus.com/advisories/4501
http://www.iss.net/security_center/static/10172.php
http://www.securityfocus.com/bid/5784
http://www.tech-serve.com/research/advisories/2002/a092302-1.txt

Products affected by CVE-2002-1147

Hp » Procurve Switch 4000m » Version: N/A

cpe:2.3:h:hp:procurve_switch_4000m:-
Hp » Procurve Switch 4000m » Version: c.07.23

cpe:2.3:h:hp:procurve_switch_4000m:c.07.23
Hp » Procurve Switch 4000m » Version: c.08.22

cpe:2.3:h:hp:procurve_switch_4000m:c.08.22
Hp » Procurve Switch 4000m » Version: c.09.09

cpe:2.3:h:hp:procurve_switch_4000m:c.09.09
Hp » Procurve Switch 4000m » Version: c.09.15

cpe:2.3:h:hp:procurve_switch_4000m:c.09.15

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2002-1147

Products

Pricing

Contact Us