CVE-2010-0214 - Vulnerability Details - OpenCVE

The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Polyvision	Roomwizard Roomwizard Firmware

Configuration 1 [-]

AND

cpe:2.3:a:polyvision:roomwizard_firmware:3.2.3:*:*:*:*:*:*:*

cpe:2.3:h:polyvision:roomwizard:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt
http://seclists.org/fulldisclosure/2011/Jan/58
http://www.kb.cert.org/vuls/id/870601
http://www.securityfocus.com/bid/45699
http://www.vupen.com/english/advisories/2011/0059
https://exchange.xforce.ibmcloud.com/vulnerabilities/64543

History

No history.

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2011-01-12T00:00:00

Updated: 2024-08-07T00:37:54.145Z

Reserved: 2010-01-06T00:00:00

Link: CVE-2010-0214

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2011-01-12T01:00:01.183

Modified: 2025-04-11T00:51:21.963

Link: CVE-2010-0214

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2011-01-06T00:00:00", "descriptions": [{"lang": "en", "value": "The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-16T14:57:01", "orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc"}, "references": [{"name": "VU#870601", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/870601"}, {"name": "roomwizard-password-security-bypass(64543)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64543"}, {"name": "ADV-2011-0059", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2011/0059"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt"}, {"name": "20110106 RoomWizard Default Password and Sync Connector Credential Leak [CVE-2010-0214]", "tags": ["mailing-list", "x_refsource_FULLDISC"], "url": "http://seclists.org/fulldisclosure/2011/Jan/58"}, {"name": "45699", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/45699"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cert@cert.org", "ID": "CVE-2010-0214", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "VU#870601", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/870601"}, {"name": "roomwizard-password-security-bypass(64543)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64543"}, {"name": "ADV-2011-0059", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2011/0059"}, {"name": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt", "refsource": "MISC", "url": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt"}, {"name": "20110106 RoomWizard Default Password and Sync Connector Credential Leak [CVE-2010-0214]", "refsource": "FULLDISC", "url": "http://seclists.org/fulldisclosure/2011/Jan/58"}, {"name": "45699", "refsource": "BID", "url": "http://www.securityfocus.com/bid/45699"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:37:54.145Z"}, "title": "CVE Program Container", "references": [{"name": "VU#870601", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/870601"}, {"name": "roomwizard-password-security-bypass(64543)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64543"}, {"name": "ADV-2011-0059", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2011/0059"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt"}, {"name": "20110106 RoomWizard Default Password and Sync Connector Credential Leak [CVE-2010-0214]", "tags": ["mailing-list", "x_refsource_FULLDISC", "x_transferred"], "url": "http://seclists.org/fulldisclosure/2011/Jan/58"}, {"name": "45699", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/45699"}]}]}, "cveMetadata": {"assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "assignerShortName": "certcc", "cveId": "CVE-2010-0214", "datePublished": "2011-01-12T00:00:00", "dateReserved": "2010-01-06T00:00:00", "dateUpdated": "2024-08-07T00:37:54.145Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:polyvision:roomwizard_firmware:3.2.3:*:*:*:*:*:*:*", "matchCriteriaId": "EEABEBDB-DFDB-4113-A58C-662492CCBBAD", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:polyvision:roomwizard:*:*:*:*:*:*:*:*", "matchCriteriaId": "C7B02E1F-6703-42B7-A63D-B44A074A7962", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The administrative interface on the PolyVision RoomWizard with firmware 3.2.3 places the Sync Connector Active Directory (AD) credentials in a web form that is accessed over HTTP on port 80, which allows remote attackers to obtain sensitive information by reading the HTML source code corresponding to the /admin/sign/DeviceSynch URI."}, {"lang": "es", "value": "La interfaz administrativa de RoomWizard PolyVision con el firmware v3.2.3 coloca las credenciales del Conector de sincronizaci\u00f3n de Active Directory (AD) en un formulario web al que se accede a trav\u00e9s de HTTP en el puerto 80, que permite a atacantes remotos obtener informaci\u00f3n sensible mediante la lectura del c\u00f3digo fuente HTML correspondiente en la URI /admin/sign/DeviceSynch"}], "id": "CVE-2010-0214", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2011-01-12T01:00:01.183", "references": [{"source": "cret@cert.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt"}, {"source": "cret@cert.org", "tags": ["Exploit"], "url": "http://seclists.org/fulldisclosure/2011/Jan/58"}, {"source": "cret@cert.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/870601"}, {"source": "cret@cert.org", "url": "http://www.securityfocus.com/bid/45699"}, {"source": "cret@cert.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2011/0059"}, {"source": "cret@cert.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64543"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://packetstormsecurity.org/files/view/97291/roomwizard-disclose.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://seclists.org/fulldisclosure/2011/Jan/58"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/870601"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/45699"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2011/0059"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/64543"}], "sourceIdentifier": "cret@cert.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}