• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Tektronix PhaserLink 850 does not require authentication for access to configuration pages such as _ncl_subjects.shtml and _ncl_items.shtml, which allows remote attackers to modify configuration information and cause a denial of service by accessing the pages.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Date Entry Created
20010524 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20020223-01)
Votes (Legacy)
ACCEPT(1) Renaud
MODIFY(2) Baker, Frech
NOOP(6) Balinsky, Cole, Oliver, Wall, Williams, Ziese
REVIEWING(1) Christey
Comments (Legacy)
 Williams> there was an issue with admin passwd storage for Tektronix Phaser 360, 740, 780, 840
 Frech> XF:tektronix-phaserlink-webserver-backdoor(6482)
 Baker> 750DP and 930 printers should be added
 CHANGE> [Williams changed vote from REVIEWING to NOOP]
 Christey> CVE-1999-1508 covered the older versions discussed
   by Ken Williams.  These may be duplicates.
   This one is BID:2659

Proposed (Legacy)
This is an entry on the CVE list, which standardizes names for security problems.