The web-based configuration interface for the Cisco ATA 186 Analog Telephone Adaptor allows remote malicious users to bypass authentication via an HTTP POST request with a single byte, which allows the malicious users to (1) obtain the password from the login screen, or (2) reconfigure the adaptor by modifying certain request parameters.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco ata-186 |