Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The management web interface in Alcatel-Lucent OmniSwitch 6450, 6250, 6850E, 9000E, 6400, and 6855 with firmware before 6.6.4.309.R01 and 6.6.5.x before 6.6.5.80.R02 generates weak session identifiers, which allows remote attackers to hijack arbitrary sessions via a brute force attack.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款Alcatel-Lucent OmniSwitch产品信息泄露漏洞
Vulnerability Description
Alcatel-Lucent OmniSwitch 6450等都是法国阿尔卡特-朗讯(Alcatel-Lucent)公司的交换机产品。 多款Alcatel-Lucent OmniSwitch产品的Web管理界面中存在安全漏洞,该漏洞源于程序生成弱会话标识符。远程攻击者可通过实施暴力破解攻击利用该漏洞劫持会话。以下产品及版本受到影响:使用6.6.4.309.R01之前版本和6.6.5.80.R02之前6.6.5.x版本固件的Alcatel-Lucent OmniSwitch 6450,6250,6850E,
CVSS Information
N/A
Vulnerability Type
N/A