CVE-2014-0328

Published: Aug 15, 2014Modified: May 6, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

The thraneLINK protocol implementation on Cobham devices does not verify firmware signatures, which allows attackers to execute arbitrary code by leveraging physical access or terminal access to send an SNMP request and a TFTP response.

Affected (4)

Products: Cobham: Ailor 6110 Mini C Gmdss, Sailor 6006 Message Terminal, Sailor 6222 Vhf, Sailor 6300 Mf / Hf

Cobham

4 products

Ailor 6110 Mini C Gmdss

Sailor 6006 Message Terminal

Sailor 6222 Vhf

Sailor 6300 Mf / Hf

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Cobham Ailor 6110 Mini C Gmdss	All versions
Cobham Sailor 6006 Message Terminal	All versions
Cobham Sailor 6222 Vhf	All versions
Cobham Sailor 6300 Mf / Hf	All versions

References (2)

http://www.kb.cert.org/vuls/id/179732

Source: cret@cert.org

Third Party AdvisoryUS Government Resource

http://www.kb.cert.org/vuls/id/179732

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.