Unauthorized System Configuration Modification and File Deletion via FTP Connection in Cisco ONS15454 and ONS15327

Unauthorized System Configuration Modification and File Deletion via FTP Connection in Cisco ONS15454 and ONS15327

CVE-2002-1553 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cisco ONS15454 and ONS15327 running ONS before 3.4 allows remote attackers to modify the system configuration and delete files by establishing an FTP connection to the TCC, TCC+ or XTC using a username and password that does not exist.

Learn more about our User Device Pen Test.