Vulnerabilities > CVE-2001-1223 - Unspecified vulnerability in Elsa Lancom 1100 Office 0.0

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

elsa

critical

NVD

Published: 2001-12-26

Updated: 2008-09-05

Summary

The web administration server for ELSA Lancom 1100 Office does not require authentication, which allows arbitrary remote attackers to gain administrative privileges by connecting to the server.

Vulnerable Configurations

Part	Description	Count
Application	Elsa Elsa Lancom 1100 Office 0.0	1

References

http://www.iss.net/security_center/static/7739.php
http://www.securityfocus.com/archive/1/247274
http://www.securityfocus.com/bid/3746