Cisco ATA-186 - HTTP Device Configuration Disclosure
| EKU-ID: 26947 | CVE: CVE-2002-0769;OSVDB-8849 | OSVDB-ID: |
| Author: Patrick Michael Kane | Published: 2002-05-09 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 26947 | CVE: CVE-2002-0769;OSVDB-8849 | OSVDB-ID: |
| Author: Patrick Michael Kane | Published: 2002-05-09 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/4711/info The Cisco ATA-186 Analog Telephone Adapter is a hardware device designed to interface between analog telephones and Voice over IP (VoIP). It includes support for web based configuration. Reportedly, HTTP requests consisting of a single character will cause the device to disclose sensitive configuration information, including the password to the administrative web interface. curl -d a http://ata186.example.com/dev