CVE-2002-0629
Description
The Polycom ViewStation Telnet service before 7.2.4 crashes due to multiple concurrent connections, enabling a denial-of-service attack.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
The Polycom ViewStation Telnet service before 7.2.4 crashes due to multiple concurrent connections, enabling a denial-of-service attack.
Vulnerability
The Telnet service in Polycom ViewStation versions before 7.2.4 contains a flaw that causes the service to crash when an attacker establishes multiple concurrent connections. The vulnerability exists in the network-facing Telnet daemon, which does not properly handle the resource exhaustion from simultaneous sessions.
Exploitation
An attacker can exploit this vulnerability from a remote network position without requiring authentication or prior access. The attack involves initiating multiple Telnet connections to the vulnerable service on the target device. The exact number of connections needed to trigger the crash is not specified in the available references, but the attacker can simply script a series of connection attempts.
Impact
Successful exploitation results in a denial of service (DoS) condition where the Telnet service crashes, rendering the device's remote administration capability unavailable. The crash does not necessarily lead to full device compromise, but it disrupts management access and may require a reboot to restore service.
Mitigation
The vulnerability is fixed in Polycom ViewStation version 7.2.4 and later, as per the vendor's advisory [1]. Users should update their devices to this version or a newer release. No workarounds are documented in the available references.
AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
16cpe:2.3:h:polycom:viewstation_128:6.5.1:*:*:*:*:*:*:*+ 5 more
- cpe:2.3:h:polycom:viewstation_128:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_128:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_h.323:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_h.323:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_sp_384:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_sp_384:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_512:6.5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:polycom:viewstation_512:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_512:7.2:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_dcp:6.5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:polycom:viewstation_dcp:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_dcp:7.2:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_fx_vs4000:4.1.5:*:*:*:*:*:*:*
cpe:2.3:h:polycom:viewstation_mp:6.5.1:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:h:polycom:viewstation_mp:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_mp:7.2:*:*:*:*:*:*:*
- (no CPE)range: <7.2.4
cpe:2.3:h:polycom:viewstation_v.35:6.5.1:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:h:polycom:viewstation_v.35:6.5.1:*:*:*:*:*:*:*
- cpe:2.3:h:polycom:viewstation_v.35:7.2:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
5- www.ciac.org/ciac/bulletins/m-123.shtmlnvdPatchVendor Advisory
- www.iss.net/security_center/static/9349.phpnvdVendor Advisory
- www.securityfocus.com/bid/5636nvdVendor Advisory
- bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jspnvd
- www.polycom.com/common/pw_item_show_doc/0%2C%2C1444%2C00.pdfnvd
News mentions
0No linked articles in our index yet.