1050ap Lan Acess Point
by Red M
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2002-0393 | 0.01 | — | 0.07 | Jul 26, 2002 | Buffer overflow in Red-M 1050 (Bluetooth Access Point) management web interface allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long administration password. | |||
| CVE-2002-0396 | 0.00 | — | 0.01 | Jul 26, 2002 | The web management server for Red-M 1050 (Bluetooth Access Point) does not use session-based credentials to authenticate users, which allows attackers to connect to the server from the same IP address as a user who has already established a session. | |||
| CVE-2002-0397 | 0.00 | — | 0.01 | Jul 26, 2002 | Red-M 1050 (Bluetooth Access Point) publicizes its name, IP address, and other information in UDP packets to a broadcast address, which allows any system on the network to obtain potentially sensitive information about the Access Point device by monitoring UDP port 8887. | |||
| CVE-2002-0398 | 0.00 | — | 0.03 | Jul 26, 2002 | Red-M 1050 (Bluetooth Access Point) PPP server allows bonded users to cause a denial of service and possibly execute arbitrary code via a long user name. | |||
| CVE-2002-0394 | 0.00 | — | 0.02 | Jul 26, 2002 | Red-M 1050 (Bluetooth Access Point) uses case insensitive passwords, which makes it easier for attackers to conduct a brute force guessing attack due to the smaller space of possible passwords. | |||
| CVE-2002-0395 | 0.00 | — | 0.02 | Jul 26, 2002 | The TFTP server for Red-M 1050 (Bluetooth Access Point) can not be disabled and makes it easier for remote attackers to crack the administration password via brute force methods. |
- CVE-2002-0393Jul 26, 2002risk 0.01cvss —epss 0.07
Buffer overflow in Red-M 1050 (Bluetooth Access Point) management web interface allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long administration password.
- CVE-2002-0396Jul 26, 2002risk 0.00cvss —epss 0.01
The web management server for Red-M 1050 (Bluetooth Access Point) does not use session-based credentials to authenticate users, which allows attackers to connect to the server from the same IP address as a user who has already established a session.
- CVE-2002-0397Jul 26, 2002risk 0.00cvss —epss 0.01
Red-M 1050 (Bluetooth Access Point) publicizes its name, IP address, and other information in UDP packets to a broadcast address, which allows any system on the network to obtain potentially sensitive information about the Access Point device by monitoring UDP port 8887.
- CVE-2002-0398Jul 26, 2002risk 0.00cvss —epss 0.03
Red-M 1050 (Bluetooth Access Point) PPP server allows bonded users to cause a denial of service and possibly execute arbitrary code via a long user name.
- CVE-2002-0394Jul 26, 2002risk 0.00cvss —epss 0.02
Red-M 1050 (Bluetooth Access Point) uses case insensitive passwords, which makes it easier for attackers to conduct a brute force guessing attack due to the smaller space of possible passwords.
- CVE-2002-0395Jul 26, 2002risk 0.00cvss —epss 0.02
The TFTP server for Red-M 1050 (Bluetooth Access Point) can not be disabled and makes it easier for remote attackers to crack the administration password via brute force methods.