CVE-2000-0384 - Vulnerability Details - OpenCVE

NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Intel	Netstructure 7110 Netstructure 7180

Configuration 1 [-]

OR	cpe:2.3:h:intel:netstructure_7110::::::::
	cpe:2.3:h:intel:netstructure_7180::::::::

No data.

References

Link	Providers
http://216.188.41.136/
http://www.l0pht.com/advisories/ipivot7180.html
http://www.lopht.com/advisories/ipivot7110.html
http://www.securityfocus.com/bid/1182
http://www.securityfocus.com/bid/1183

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2000-06-15T04:00:00

Updated: 2024-08-08T05:14:21.456Z

Reserved: 2000-06-14T00:00:00

Link: CVE-2000-0384

Vulnrichment

No data.

NVD

Status : Modified

Published: 2000-05-08T04:00:00.000

Modified: 2024-11-20T23:32:22.897

Link: CVE-2000-0384

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2000-05-08T00:00:00", "descriptions": [{"lang": "en", "value": "NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2003-03-21T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1183", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/1183"}, {"name": "20000508 NetStructure 7180 remote backdoor vulnerability", "tags": ["vendor-advisory", "x_refsource_L0PHT"], "url": "http://www.lopht.com/advisories/ipivot7110.html"}, {"name": "1182", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/1182"}, {"name": "20000508 NetStructure 7110 console backdoor", "tags": ["vendor-advisory", "x_refsource_L0PHT"], "url": "http://www.l0pht.com/advisories/ipivot7180.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://216.188.41.136/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2000-0384", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1183", "refsource": "BID", "url": "http://www.securityfocus.com/bid/1183"}, {"name": "20000508 NetStructure 7180 remote backdoor vulnerability", "refsource": "L0PHT", "url": "http://www.lopht.com/advisories/ipivot7110.html"}, {"name": "1182", "refsource": "BID", "url": "http://www.securityfocus.com/bid/1182"}, {"name": "20000508 NetStructure 7110 console backdoor", "refsource": "L0PHT", "url": "http://www.l0pht.com/advisories/ipivot7180.html"}, {"name": "http://216.188.41.136/", "refsource": "CONFIRM", "url": "http://216.188.41.136/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T05:14:21.456Z"}, "title": "CVE Program Container", "references": [{"name": "1183", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/1183"}, {"name": "20000508 NetStructure 7180 remote backdoor vulnerability", "tags": ["vendor-advisory", "x_refsource_L0PHT", "x_transferred"], "url": "http://www.lopht.com/advisories/ipivot7110.html"}, {"name": "1182", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/1182"}, {"name": "20000508 NetStructure 7110 console backdoor", "tags": ["vendor-advisory", "x_refsource_L0PHT", "x_transferred"], "url": "http://www.l0pht.com/advisories/ipivot7180.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://216.188.41.136/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2000-0384", "datePublished": "2000-06-15T04:00:00", "dateReserved": "2000-06-14T00:00:00", "dateUpdated": "2024-08-08T05:14:21.456Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:intel:netstructure_7110:*:*:*:*:*:*:*:*", "matchCriteriaId": "141BF9B0-29DC-42DC-A53E-96818BE1450F", "vulnerable": true}, {"criteria": "cpe:2.3:h:intel:netstructure_7180:*:*:*:*:*:*:*:*", "matchCriteriaId": "9FEE7633-BA33-4D8B-B6B4-B914707666AB", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "NetStructure 7110 and 7180 have undocumented accounts (servnow, root, and wizard) whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access."}], "id": "CVE-2000-0384", "lastModified": "2024-11-20T23:32:22.897", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 10.0, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2000-05-08T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://216.188.41.136/"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.l0pht.com/advisories/ipivot7180.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.lopht.com/advisories/ipivot7110.html"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/1182"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/1183"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://216.188.41.136/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.l0pht.com/advisories/ipivot7180.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.lopht.com/advisories/ipivot7110.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/1182"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.securityfocus.com/bid/1183"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}