CVE-2005-1670 - Vulnerability Details - OpenCVE

Unknown vulnerability in Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS 11.1 before 11.1.3.3, 11.0 before 11.0.2.4, and 10.x allows remote authenticated users to execute arbitrary commands.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Extremenetworks	Blackdiamond 10808 Blackdiamond 8800 Extremeware Xos

Configuration 1 [-]

AND

OR	cpe:2.3:o:extremenetworks:extremeware_xos::::::::
	cpe:2.3:o:extremenetworks:extremeware_xos::::::::
	cpe:2.3:o:extremenetworks:extremeware_xos::::::::

OR	cpe:2.3:h:extremenetworks:blackdiamond_10808::::::::
	cpe:2.3:h:extremenetworks:blackdiamond_8800::::::::

No data.

References

Link	Providers
http://secunia.com/advisories/15438
http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp
http://www.kb.cert.org/vuls/id/937838
http://www.vupen.com/english/advisories/2005/0572

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-05-19T04:00:00

Updated: 2024-08-07T21:59:24.092Z

Reserved: 2005-05-19T00:00:00

Link: CVE-2005-1670

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-05-19T04:00:00.000

Modified: 2024-11-20T23:57:51.823

Link: CVE-2005-1670

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-05-18T00:00:00", "descriptions": [{"lang": "en", "value": "Unknown vulnerability in Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS 11.1 before 11.1.3.3, 11.0 before 11.0.2.4, and 10.x allows remote authenticated users to execute arbitrary commands."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2009-02-26T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp"}, {"name": "15438", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/15438"}, {"name": "ADV-2005-0572", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2005/0572"}, {"name": "VU#937838", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/937838"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-1670", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Unknown vulnerability in Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS 11.1 before 11.1.3.3, 11.0 before 11.0.2.4, and 10.x allows remote authenticated users to execute arbitrary commands."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp", "refsource": "CONFIRM", "url": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp"}, {"name": "15438", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/15438"}, {"name": "ADV-2005-0572", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2005/0572"}, {"name": "VU#937838", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/937838"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T21:59:24.092Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp"}, {"name": "15438", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/15438"}, {"name": "ADV-2005-0572", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2005/0572"}, {"name": "VU#937838", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/937838"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-1670", "datePublished": "2005-05-19T04:00:00", "dateReserved": "2005-05-19T00:00:00", "dateUpdated": "2024-08-07T21:59:24.092Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:extremenetworks:extremeware_xos:*:*:*:*:*:*:*:*", "matchCriteriaId": "2BA7B2D6-8210-401D-9919-28EF4DC75991", "versionEndIncluding": "10.1", "versionStartIncluding": "10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:extremenetworks:extremeware_xos:*:*:*:*:*:*:*:*", "matchCriteriaId": "234C1CBB-BA61-41C3-9509-75BE323310D9", "versionEndExcluding": "11.0.2.4", "versionStartIncluding": "11.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:extremenetworks:extremeware_xos:*:*:*:*:*:*:*:*", "matchCriteriaId": "87E24F66-409C-42D3-AC8A-7607B9AE7B4C", "versionEndExcluding": "11.1.3.3", "versionStartIncluding": "11.1", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:extremenetworks:blackdiamond_10808:*:*:*:*:*:*:*:*", "matchCriteriaId": "14654E85-CC6C-474B-B133-0B8997EC1F5E", "vulnerable": false}, {"criteria": "cpe:2.3:h:extremenetworks:blackdiamond_8800:*:*:*:*:*:*:*:*", "matchCriteriaId": "6B0F2DF8-A86F-4673-9FB1-79C9CD914B4E", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "Unknown vulnerability in Extreme BlackDiamond 10808 and 8800 switches running ExtremeWare XOS 11.1 before 11.1.3.3, 11.0 before 11.0.2.4, and 10.x allows remote authenticated users to execute arbitrary commands."}], "id": "CVE-2005-1670", "lastModified": "2024-11-20T23:57:51.823", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-05-19T04:00:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/15438"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp"}, {"source": "cve@mitre.org", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/937838"}, {"source": "cve@mitre.org", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://www.vupen.com/english/advisories/2005/0572"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory"], "url": "http://secunia.com/advisories/15438"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.extremenetworks.com/services/documentation/FieldNotices_FN0215-Security_Alert_EXOS.asp"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/937838"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Permissions Required", "Third Party Advisory"], "url": "http://www.vupen.com/english/advisories/2005/0572"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}