CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2006-0374

Advantage Century Telecommunication (ACT) P202S IP Phone 1.01.21 running firmware 1.1.21 has multiple undocumented ports available, which (1) might allow remote attackers to obtain sensitive information, such as memory contents and internal operating-system data, by directly accessing the VxWorks WDB remote debugging ONCRPC (aka wdbrpc) on UDP 17185, (2) reflect network data using echo (TCP 7), or (3) gain access without authentication using rlogin (TCP 513).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.011

EPSS Ranking 76.8%

CVSS Severity

CVSS v2 Score 7.5

References

http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
http://secunia.com/advisories/18514
http://www.securityfocus.com/bid/16288
https://exchange.xforce.ibmcloud.com/vulnerabilities/24149
http://lists.grok.org.uk/pipermail/full-disclosure/2006-January/041434.html
http://secunia.com/advisories/18514
http://www.securityfocus.com/bid/16288
https://exchange.xforce.ibmcloud.com/vulnerabilities/24149

Products affected by CVE-2006-0374

Advantage Century Telecommunication » P202s » Version: 1.01.21_firmware_1.1.21

cpe:2.3:h:advantage_century_telecommunication:p202s:1.01.21_firmware_1.1.21

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2006-0374

Products

Pricing

Contact Us