Search criteria
6 vulnerabilities found for n8800_nas_server by thecus
CVE-2013-5669 (GCVE-0-2013-5669)
Vulnerability from nvd – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5669/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.641Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5669",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5669/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5669",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.641Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-5668 (GCVE-0-2013-5668)
Vulnerability from nvd – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page's cleartext content.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5668/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.644Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page\u0027s cleartext content."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5668",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page\u0027s cleartext content."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5668/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5668",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.644Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-5667 (GCVE-0-2013-5667)
Vulnerability from nvd – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5667/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.539Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5667",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5667/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5667",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.539Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-5668 (GCVE-0-2013-5668)
Vulnerability from cvelistv5 – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page's cleartext content.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5668/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.644Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page\u0027s cleartext content."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5668",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The ADS/NT Support page on the Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to discover the administrator credentials by reading this page\u0027s cleartext content."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5668/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5668/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5668",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.644Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-5667 (GCVE-0-2013-5667)
Vulnerability from cvelistv5 – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5667/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.539Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5667",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 allows remote attackers to execute arbitrary commands via a get_userid action with shell metacharacters in the username parameter."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5667/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5667/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5667",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.539Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-5669 (GCVE-0-2013-5669)
Vulnerability from cvelistv5 – Published: 2014-01-24 02:00 – Updated: 2024-08-06 17:15
VLAI
Summary
The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
3 references
| URL | Tags |
|---|---|
| http://www.7elements.co.uk/news/cve-2013-5669/ | x_refsource_MISC |
| http://www.7elements.co.uk/resources/blog/multipl… | x_refsource_MISC |
| http://www.kb.cert.org/vuls/id/105686 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2014-01-23 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T17:15:21.641Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2014-01-23T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2014-01-24T02:57:00.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/105686"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2013-5669",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The Thecus NAS server N8800 with firmware 5.03.01 uses cleartext credentials for administrative authentication, which allows remote attackers to obtain sensitive information by sniffing the network."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.7elements.co.uk/news/cve-2013-5669/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/news/cve-2013-5669/"
},
{
"name": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/",
"refsource": "MISC",
"url": "http://www.7elements.co.uk/resources/blog/multiple-vulnerabilities-thecus-nas/"
},
{
"name": "VU#105686",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/105686"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2013-5669",
"datePublished": "2014-01-24T02:00:00.000Z",
"dateReserved": "2013-08-31T00:00:00.000Z",
"dateUpdated": "2024-08-06T17:15:21.641Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}