CVE-2002-2148

Lucent Ascend MAX Router 5.0 and earlier, Lucent Ascend Pipeline Router 6.0.2 and earlier and Lucent DSLTerminator allows remote attackers to obtain sensitive information such as hostname, MAC, and IP address of the Ethernet interface via a discard (UDP port 9) packet, which causes the device to leak the information in the response.

Published: Dec 31, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-2148
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
lucent / dslterminator	-	-
lucent / ascend_pipeline_router	4.0	4.0.x
lucent / ascend_pipeline_router	5.0	5.0.x
lucent / ascend_pipeline_router	1.0	1.0.x
lucent / ascend_max_router	5.0_ap48	5.0_ap48.x
lucent / ascend_max_router	3.0	3.0.x
lucent / ascend_pipeline_router	6.0	6.0.x
lucent / ascend_pipeline_router	2.0	2.0.x
lucent / ascend_pipeline_router	6.0.2	6.0.2.x
lucent / ascend_pipeline_router	3.0	3.0.x
lucent / ascend_max_router	4.0	4.0.x
lucent / ascend_max_router	2.0	2.0.x
lucent / ascend_max_router	5.0	5.0.x

Vulnerability Database

291,049

CVE-2002-2148