| Vulnerability Name: | CVE-2000-0894 (CCN-5554) | ||||||||
| Assigned: | 2000-12-14 | ||||||||
| Published: | 2000-12-14 | ||||||||
| Updated: | 2017-10-10 | ||||||||
| Summary: | HTTP server on the WatchGuard SOHO firewall does not properly restrict access to administrative functions such as password resets or rebooting, which allows attackers to cause a denial of service or conduct unauthorized activities. | ||||||||
| CVSS v3 Severity: | 10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
| ||||||||
| CVSS v2 Severity: | 10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Gain Access | ||||||||
| References: | Source: CCN Type: WatchGuard Technologies Web site WatchGuard SOHO Firewall Software Updates Source: MITRE Type: CNA CVE-2000-0894 Source: CCN Type: Internet Security Systems Security Alert #70 Multiple vulnerabilities in the WatchGuard SOHO Firewall Source: OSVDB Type: UNKNOWN 4404 Source: CCN Type: OSVDB ID: 4404 WatchGuard Firebox SOHO Web Config Server Unauthenticated Access Bypass Source: BID Type: Exploit, Patch, Vendor Advisory 2119 Source: CCN Type: BID-2119 Watchguard SOHO Firewall HTTP Request Vulnerability Source: CCN Type: BID-212 N-Base Switch Vulnerability Source: ISS Type: Patch, Vendor Advisory 20001214 Multiple vulnerabilities in the WatchGuard SOHO Firewall Source: XF Type: UNKNOWN watchguard-soho-web-auth(5554) Source: XF Type: UNKNOWN watchguard-soho-web-auth(5554) | ||||||||
| Vulnerable Configuration: | Configuration 1: Denotes that component is vulnerable | ||||||||
| BACK | |||||||||