CVE-2001-1339

high-risk
Published 2001-05-24

Beck IPC GmbH IPC@CHIP telnet service does not delay or disconnect users from the service when bad passwords are entered, which makes it easier for remote attackers to conduct brute force password guessing attacks.

Do I need to act?

!
24.3% chance of exploitation in next 30 days
EPSS score — higher than 76% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
20881
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Anybus

References (10)

Broken Link http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00010.html
Broken Link http://www.iss.net/security_center/static/6605.php
Third Party Advisory http://www.kb.cert.org/vuls/id/198979
Broken Link http://www.securityfocus.com/archive/1/186418
Broken Link http://www.securityfocus.com/bid/2771
Broken Link http://cert.uni-stuttgart.de/archive/bugtraq/2001/06/msg00010.html
Broken Link http://www.iss.net/security_center/static/6605.php
Third Party Advisory http://www.kb.cert.org/vuls/id/198979
Broken Link http://www.securityfocus.com/archive/1/186418
Broken Link http://www.securityfocus.com/bid/2771
59
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 22/34 · High
Exposure 5/34 · Minimal