What is the severity of CVE-2004-1436?

CVE-2004-1436 has a medium severity level due to unauthorized remote access risks.

How do I fix CVE-2004-1436?

To fix CVE-2004-1436, configure user accounts with non-blank passwords that comply with password policies.

What systems are affected by CVE-2004-1436?

CVE-2004-1436 affects various versions of Cisco Optical Networking systems software including versions 4.6(0) and 4.6(1).

What kind of attack does CVE-2004-1436 enable?

CVE-2004-1436 allows attackers to gain unauthorized access by exploiting accounts with blank passwords.

When was CVE-2004-1436 reported?

CVE-2004-1436 was reported in July 2004.

Vulnerability/
CVE-2004-1436

high

7.5

CWE

NVD-CWE-Other

31/12/2004

13/2/2005

8/8/2024

CVE-2004-1436

First published: Fri Dec 31 2004(Updated: )

The Transaction Language 1 (TL1) login interface in Cisco ONS 15327 4.6(0) and 4.6(1) and 15454 and 15454 SDH 4.6(0) and 4.6(1), when a user account is configured with a blank password, allows remote attackers to gain unauthorized access by logging in with a password larger than 10 characters.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Cisco Optical Networking systems software	=1.0
Cisco Optical Networking systems software	=1.1
Cisco Optical Networking systems software	=1.1\(0\)
Cisco Optical Networking systems software	=1.1\(1\)
Cisco Optical Networking systems software	=1.3\(0\)
Cisco Optical Networking systems software	=2.3\(5\)
Cisco Optical Networking systems software	=3.0
Cisco Optical Networking systems software	=3.1.0
Cisco Optical Networking systems software	=3.2
Cisco Optical Networking systems software	=3.2.0
Cisco Optical Networking systems software	=3.3.0
Cisco Optical Networking systems software	=3.4.0
Cisco Optical Networking systems software	=4.0\(0\)
Cisco Optical Networking systems software	=4.0\(1\)
Cisco Optical Networking systems software	=4.0\(2\)
Cisco Optical Networking systems software	=4.0.0
Cisco Optical Networking systems software	=4.1\(0\)
Cisco Optical Networking systems software	=4.1\(1\)
Cisco Optical Networking systems software	=4.1\(2\)
Cisco Optical Networking systems software	=4.1\(3\)
Cisco Optical Networking systems software	=4.5
Cisco Optical Networking systems software	=4.6\(0\)
Cisco Optical Networking systems software	=4.6\(1\)

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-1436?
CVE-2004-1436 has a medium severity level due to unauthorized remote access risks.
How do I fix CVE-2004-1436?
To fix CVE-2004-1436, configure user accounts with non-blank passwords that comply with password policies.
What systems are affected by CVE-2004-1436?
CVE-2004-1436 affects various versions of Cisco Optical Networking systems software including versions 4.6(0) and 4.6(1).
What kind of attack does CVE-2004-1436 enable?
CVE-2004-1436 allows attackers to gain unauthorized access by exploiting accounts with blank passwords.
When was CVE-2004-1436 reported?
CVE-2004-1436 was reported in July 2004.

agent/type
agent/softwarecombine
agent/first-publish-date
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/author
agent/references
agent/weakness
agent/severity
agent/description
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/cisco
canonical/cisco optical networking systems software
version/cisco optical networking systems software/1.0
version/cisco optical networking systems software/1.1
version/cisco optical networking systems software/1.1\(0\)
version/cisco optical networking systems software/1.1\(1\)
version/cisco optical networking systems software/1.3\(0\)
version/cisco optical networking systems software/2.3\(5\)
version/cisco optical networking systems software/3.0
version/cisco optical networking systems software/3.1.0
version/cisco optical networking systems software/3.2
version/cisco optical networking systems software/3.2.0
version/cisco optical networking systems software/3.3.0
version/cisco optical networking systems software/3.4.0
version/cisco optical networking systems software/4.0\(0\)
version/cisco optical networking systems software/4.0\(1\)
version/cisco optical networking systems software/4.0\(2\)
version/cisco optical networking systems software/4.0.0
version/cisco optical networking systems software/4.1\(0\)
version/cisco optical networking systems software/4.1\(1\)
version/cisco optical networking systems software/4.1\(2\)
version/cisco optical networking systems software/4.1\(3\)
version/cisco optical networking systems software/4.5
version/cisco optical networking systems software/4.6\(0\)
version/cisco optical networking systems software/4.6\(1\)

CVE-2004-1436

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-1436?

How do I fix CVE-2004-1436?

What systems are affected by CVE-2004-1436?

What kind of attack does CVE-2004-1436 enable?

When was CVE-2004-1436 reported?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2004-1436?

How do I fix CVE-2004-1436?

What systems are affected by CVE-2004-1436?

What kind of attack does CVE-2004-1436 enable?

When was CVE-2004-1436 reported?