CVE-2008-1543 - Vulnerability Details - OpenCVE

The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

The EPSS score is 0.00423.

Key SSVC decision points have not yet been added.

Vendors	Products
Airspan	Easy St Easy St-2 Prost Prost-2 Prost Web Management Wimax Prost Wimax Prost-2

Configuration 1 [-]

AND

OR	cpe:2.3:h:airspan:easy_st::::::::
	cpe:2.3:h:airspan:easy_st-2::::::::
	cpe:2.3:h:airspan:prost::::::::
	cpe:2.3:h:airspan:prost-2::::::::
	cpe:2.3:h:airspan:wimax_prost::::::::
	cpe:2.3:h:airspan:wimax_prost-2::::::::

cpe:2.3:a:airspan:prost_web_management:*:*:*:*:*:*:*:*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2008-1544	The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820
https://exchange.xforce.ibmcloud.com/vulnerabilities/41567

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2008-03-28T23:00:00

Updated: 2024-08-07T08:24:42.295Z

Reserved: 2008-03-28T00:00:00

Link: CVE-2008-1543

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2008-03-28T23:44:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2008-1543

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-03-11T00:00:00", "descriptions": [{"lang": "en", "value": "The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820"}, {"name": "wimaxprost-interface-default-password(41567)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41567"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-1543", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820", "refsource": "CONFIRM", "url": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820"}, {"name": "wimaxprost-interface-default-password(41567)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41567"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T08:24:42.295Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820"}, {"name": "wimaxprost-interface-default-password(41567)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41567"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-1543", "datePublished": "2008-03-28T23:00:00", "dateReserved": "2008-03-28T00:00:00", "dateUpdated": "2024-08-07T08:24:42.295Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:h:airspan:easy_st:*:*:*:*:*:*:*:*", "matchCriteriaId": "ACF26466-376C-4B1A-89F4-1BDC315B783D", "vulnerable": false}, {"criteria": "cpe:2.3:h:airspan:easy_st-2:*:*:*:*:*:*:*:*", "matchCriteriaId": "7FD20A1B-ED23-48B8-A6FD-0943F0515F3C", "vulnerable": false}, {"criteria": "cpe:2.3:h:airspan:prost:*:*:*:*:*:*:*:*", "matchCriteriaId": "76F501DB-C6C1-46DF-AE02-81615782B1B8", "vulnerable": false}, {"criteria": "cpe:2.3:h:airspan:prost-2:*:*:*:*:*:*:*:*", "matchCriteriaId": "4F8338C0-CD9F-48D9-AFF5-E695C539E138", "vulnerable": false}, {"criteria": "cpe:2.3:h:airspan:wimax_prost:*:*:*:*:*:*:*:*", "matchCriteriaId": "0A9BDBF5-D5E1-4A18-88CE-C92214494D64", "vulnerable": false}, {"criteria": "cpe:2.3:h:airspan:wimax_prost-2:*:*:*:*:*:*:*:*", "matchCriteriaId": "F8E2A876-C2CB-4C44-BEC9-11EB5063E7E8", "vulnerable": false}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:airspan:prost_web_management:*:*:*:*:*:*:*:*", "matchCriteriaId": "903A7CF9-9EA5-420F-B777-A79A09231AEB", "vulnerable": true}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Advanced User Interface Pages in the ProST Web Management component on the Airspan WiMAX ProST have a certain default User ID and password, which makes it easier for remote attackers to obtain partial administrative access, a different vulnerability than CVE-2008-1262."}, {"lang": "es", "value": "Las P\u00e1ginas de Interfaz para Usuarios Avanzados (Advanced User Interface Pages) en el componente ProST Web Management de Airspan WiMAX ProST tienen cierto ID de usuario y contrase\u00f1a por defecto, que facilita a los atacantes remotos obtener acceso parcial como administrador, una vulnerabilidad diferente a la CVE-2008-1262."}], "id": "CVE-2008-1543", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-03-28T23:44:00.000", "references": [{"source": "cve@mitre.org", "url": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41567"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.sharemethods.net/nepal/servlet/open?keeppath=false&aid=29820"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41567"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-255"}], "source": "nvd@nist.gov", "type": "Primary"}]}