Cisco ONS 15327 prior to 4.1(3), ONS 15454 prior to 4.6(1), ONS 15454 SD prior to 4.1(3), and Cisco ONS 15600 prior to 1.3(0) enable TFTP service on UDP port 69 by default, which allows remote malicious users to GET or PUT ONS system files on the current active TCC in the /flash0 or /flash1 directories.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco optical networking systems software 4.1\\(2\\) |
||
cisco optical networking systems software 4.0.0 |
||
cisco optical networking systems software 4.1.0 |
||
cisco optical networking systems software 4.5 |
||
cisco optical networking systems software 4.0\\(1\\) |
||
cisco optical networking systems software 4.0\\(2\\) |
||
cisco optical networking systems software 1.0 |
||
cisco optical networking systems software 4.1\\(0\\) |
||
cisco optical networking systems software 4.1\\(1\\) |
||
cisco optical networking systems software 4.1\\(3\\) |