CVE DATABASE / CVE-2002-1863
CVE-2002-1863
CVSS 4.6 · MEDIUM
Summary
Iomega Network Attached Storage (NAS) A300U, and possibly other models, does not allow the FTP service to be disabled, which allows local users to access home directories via FTP even when access to all shared directories have been disabled.
CVSS 2.0 breakdown
| Base score | 4.6 (MEDIUM) |
| Vector | AV:L/AC:L/Au:N/C:P/I:P/A:P |
| Attack vector | LOCAL |
| Attack complexity | LOW |
| Confidentiality | PARTIAL |
| Integrity | PARTIAL |
| Availability | PARTIAL |
Affected products
Iomega network attached storage
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://archives.neohapsis.com/archives/bugtraq/2002-10/0440.html
- http://www.iss.net/security_center/static/10530.php
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.