CVE-2012-1223 - Vulnerability Details - OpenCVE

RabidHamster R2/Extreme 1.65 and earlier uses a small search space of values for the PIN number, which allows remote attackers to obtain the PIN number via a brute force attack.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Rabidhamster	R2\/extreme

Configuration 1 [-]

OR	cpe:2.3:a:rabidhamster:r2\/extreme::::::::
	cpe:2.3:a:rabidhamster:r2\/extreme:1.51:::::::*

No data.

References

Link	Providers
http://aluigi.org/adv/r2_1-adv.txt
http://osvdb.org/79095
http://secunia.com/advisories/47966
https://exchange.xforce.ibmcloud.com/vulnerabilities/73115

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2012-02-21T00:00:00

Updated: 2024-08-06T18:53:36.431Z

Reserved: 2012-02-20T00:00:00

Link: CVE-2012-1223

Vulnrichment

No data.

NVD

Status : Modified

Published: 2012-02-21T13:31:47.487

Modified: 2024-11-21T01:36:42.140

Link: CVE-2012-1223

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-02-09T00:00:00", "descriptions": [{"lang": "en", "value": "RabidHamster R2/Extreme 1.65 and earlier uses a small search space of values for the PIN number, which allows remote attackers to obtain the PIN number via a brute force attack."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "47966", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/47966"}, {"tags": ["x_refsource_MISC"], "url": "http://aluigi.org/adv/r2_1-adv.txt"}, {"name": "r2-telnet-unauth-access(73115)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73115"}, {"name": "79095", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/79095"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-1223", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "RabidHamster R2/Extreme 1.65 and earlier uses a small search space of values for the PIN number, which allows remote attackers to obtain the PIN number via a brute force attack."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "47966", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/47966"}, {"name": "http://aluigi.org/adv/r2_1-adv.txt", "refsource": "MISC", "url": "http://aluigi.org/adv/r2_1-adv.txt"}, {"name": "r2-telnet-unauth-access(73115)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73115"}, {"name": "79095", "refsource": "OSVDB", "url": "http://osvdb.org/79095"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T18:53:36.431Z"}, "title": "CVE Program Container", "references": [{"name": "47966", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/47966"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://aluigi.org/adv/r2_1-adv.txt"}, {"name": "r2-telnet-unauth-access(73115)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73115"}, {"name": "79095", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/79095"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2012-1223", "datePublished": "2012-02-21T00:00:00", "dateReserved": "2012-02-20T00:00:00", "dateUpdated": "2024-08-06T18:53:36.431Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rabidhamster:r2\\/extreme:*:*:*:*:*:*:*:*", "matchCriteriaId": "2B1E2AEB-D593-49F3-AB29-64B660799390", "versionEndIncluding": "1.65", "vulnerable": true}, {"criteria": "cpe:2.3:a:rabidhamster:r2\\/extreme:1.51:*:*:*:*:*:*:*", "matchCriteriaId": "89D5F920-C8AC-4B74-BAF1-01A4676AEB4D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "RabidHamster R2/Extreme 1.65 and earlier uses a small search space of values for the PIN number, which allows remote attackers to obtain the PIN number via a brute force attack."}, {"lang": "es", "value": "RabidHamster R2/Extreme v1.65 y anteriores usa un peque\u00f1o espacio de b\u00fasqueda de valores para el n\u00famero PIN, lo que permite a atacantes remotos obtener el n\u00famero PIN a trav\u00e9s de ataques de fuerza bruta."}], "id": "CVE-2012-1223", "lastModified": "2024-11-21T01:36:42.140", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-02-21T13:31:47.487", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://aluigi.org/adv/r2_1-adv.txt"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/79095"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/47966"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73115"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://aluigi.org/adv/r2_1-adv.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/79095"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/47966"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/73115"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}