Lucene search

[email protected]CVE-2005-0311

HistoryMay 02, 2005 - 4:00 a.m.

CVE-2005-0311

2005-05-0204:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ingate firewall

cve-2005-0311

pptp

unauthorized access

resource management

security vulnerability

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.3%

JSON

Ingate Firewall 4.1.3 and earlier does not terminate the PPTP session for an active user when the administrator disables that user from a resource, which could allow remote authenticated users to retain unauthorized access to resources.

CPENameOperatorVersion
ingate:ingate_firewallingate ingate firewalleq3.3.1
ingate:ingate_firewallingate ingate firewalleq4.1.3
ingate:ingate_firewallingate ingate firewalleq3.2
ingate:ingate_firewallingate ingate firewalleq3.2.1

CPE	Name	Operator	Version
ingate:ingate_firewall	ingate ingate firewall	eq	3.3.1
ingate:ingate_firewall	ingate ingate firewall	eq	4.1.3
ingate:ingate_firewall	ingate ingate firewall	eq	3.2
ingate:ingate_firewall	ingate ingate firewall	eq	3.2.1

References

marc.info/?l=bugtraq&m=110684375429946&w=2

secunia.com/advisories/14060

securitytracker.com/id?1013022

www.ingate.com/relnote-422.php

www.securityfocus.com/bid/12383

exchange.xforce.ibmcloud.com/vulnerabilities/19123

7.1 High

AI Score

Confidence

Low

4.6 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.01 Low

EPSS

Percentile

83.3%

JSON

Related for CVE-2005-0311

cvelist1