Vulnerabilities > CVE-2002-0480 - Unspecified vulnerability in ISS Realsecure Nokia 6.0

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

iss

NVD

Published: 2002-08-12

Updated: 2024-11-20

Summary

ISS RealSecure for Nokia devices before IPSO build 6.0.2001.141d is configured to allow a user "skank" on a machine "starscream" to become a key manager when the "first time connection" feature is enabled and before any legitimate administrators have connected, which could allow remote attackers to gain access to the device during installation.

Vulnerable Configurations

Part	Description	Count
Application	Iss ISS Realsecure Nokia 6.0	1

References

http://marc.info/?l=bugtraq&m=101666833321138&w=2
http://marc.info/?l=bugtraq&m=101666833321138&w=2
http://marc.info/?l=bugtraq&m=101675086010051&w=2
http://marc.info/?l=bugtraq&m=101675086010051&w=2
http://marc.info/?l=bugtraq&m=101684141308876&w=2
http://marc.info/?l=bugtraq&m=101684141308876&w=2
http://www.securityfocus.com/bid/4331
http://www.securityfocus.com/bid/4331