CVE-2014-2940

Published: Aug 15, 2014Modified: May 6, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Cobham Sailor 900 and 6000 satellite terminals with firmware 1.08 MFHF and 2.11 VHF have hardcoded credentials for the administrator account, which allows attackers to obtain administrative control by leveraging physical access or terminal access.

Affected (4)

Products: Cobham: Sailor 900 Firmware, Sailor 6000 Series Firmware

Cobham

2 products

Sailor 900 Firmware

Sailor 6000 Series Firmware

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cobham Sailor 900 Firmware	Version 1.08_mfhf
Cobham Sailor 900 Firmware	Version 2.11_vhf

Running on/with	Platform Versions
Cobham Sailor 900 Vsat	All versions

Configuration B

2 vulnerable · 4 platform

Vulnerable Software	Affected Versions
Cobham Sailor 6000 Series Firmware	Version 1.08_mfhf
Cobham Sailor 6000 Series Firmware	Version 2.11_vhf

Running on/with	Platform Versions
Cobham Ailor 6110 Mini C Gmdss	All versions
Cobham Sailor 6006 Message Terminal	All versions
Cobham Sailor 6222 Vhf	All versions
Cobham Sailor 6300 Mf / Hf	All versions

References (2)

http://www.kb.cert.org/vuls/id/460687

Source: cret@cert.org

Third Party AdvisoryUS Government Resource

http://www.kb.cert.org/vuls/id/460687

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

Timeline

No history available yet.