Summary
This host is a Cabletron switch and is running
Cabletron WebView. This web software
provides a graphical, real-time representation of
the front panel on the switch. This graphic,
along with additionally defined areas of the
browser interface, allow you to interactively
configure the switch, monitor its status, and
view statistical information. An attacker can
use this to gain information about this host.
Solution
Depending on the location of the switch, it might
be advisable to restrict access to the web server by IP address or disable the web server completely.
Severity
Classification
-
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- ZyXEL ZyWALL Web Configurator Authentication Bypass Vulnerability
- VMware Product(s) Local Privilege Escalation Vulnerability
- Mozilla Products 'NoWaiverWrapper' Privilege Escalation Vulnerability (Mac OS X)
- Panda Products Privilege Escalation Vulnerability
- Multiple Brickcom Devices Authentication Bypass Vulnerability