Required CVE Record Information
Description
The default configuration of the HTTP server in Hitachi IP5000 VOIP WIFI Phone 1.5.6 does not require authentication for sensitive configuration pages, which allows remote attackers to modify configuration.
References 3 Total
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 3 Total
- secunia.com: 17628 third-party-advisoryx_transferred
- http://www.hitachi-cable.co.jp/ICSFiles/infosystem/security/76659792_e.pdf x_transferred
- marc.info: 20051116 Hitachi IP5000 VoIP Wifi phone multiple mailing-listx_transferred