How to Buy
This script is (C) 2005-2013 Tenable Network Security, Inc.
The remote Cisco device has multiple vulnerabilites.
According to its version number, the remote Cisco ONS platform has
the following vulnerabilities :
- The TFTP server allows unauthenticated access to TFTP
GET and PUT commands. An attacker may exploit this flaw
to upload or retrieve the system files of the remote
- A denial of service attack may occur through the network
management port of the remote device (1080/tcp).
- Superuser accounts cannot be disabled over telnet.
See also :
Apply the fixes referenced in Cisco's advisory.
Risk factor :
High / CVSS Base Score : 9.0
CVSS Temporal Score : 7.3
Public Exploit Available : false
Nessus Plugin ID: 16202 (cisco_ons_platform_vulnerabilities.nasl)
Bugtraq ID: 505860736076607860816082608360849699
CVE ID: CVE-2002-0952CVE-2002-1553CVE-2002-1554CVE-2002-1555CVE-2002-1556CVE-2002-1557CVE-2002-1558CVE-2004-0306CVE-2004-0307CVE-2004-0308
Get Nessus Professional to scan unlimited IPs, run compliance checks & more
The cookie settings on this website are set to 'allow all cookies' to give you the very best website experience. If you continue without changing these settings, you consent to this - but if you want, you can opt out of all cookies by clicking below.