Vulnerabilities > CVE-2014-0327 - Authentication Bypass vulnerability in Iridium Pilot and OpenPort
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The Terminal Upgrade Tool in the Pilot Below Deck Equipment (BDE) and OpenPort implementations on Iridium satellite terminals allows remote attackers to execute arbitrary code by uploading new firmware to TCP port 54321. <a href="http://cwe.mitre.org/data/definitions/306.html">CWE-306: Missing Authentication for Critical Function</a>
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Hardware | 2 |