Vulnerabilities > CVE-2008-1543 - Credentials Management vulnerability in Airspan Prost web Management

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

airspan

CWE-255

NVD

Published: 2008-03-28

Updated: 2017-08-08

Summary

The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262.

Vulnerable Configurations

Part	Description	Count
Hardware	Airspan Airspan Easy ST * Airspan Easy ST 2 * Airspan Prost * Airspan Prost 2 * Airspan Wimax Prost * Airspan Wimax Prost 2 *	6
Application	Airspan Airspan Prost WEB Management *	1

Common Weakness Enumeration (CWE)

CWE-255 - Credentials Management

References

http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820
https://exchange.xforce.ibmcloud.com/vulnerabilities/41567