Lucene search
HistoryMar 04, 2008 - 7:44 p.m.
CVE-2007-6702
cve-2007-6702
goahead web server
fs4104-aw
vdsl device
password exposure
html source vulnerability
6.6 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.055 Low
EPSS
Percentile
93.2%
goform/QuickStart_c0 on the GoAhead Web Server on the FS4104-AW (aka rooter) VDSL device contains a password in the typepassword field, which allows remote attackers to obtain this password by reading the HTML source, a different vulnerability than CVE-2002-1603.
Affected configurations
Node
goahead_softwarefs4104-aw_device
ORgoahead_softwaregoahead_webserver
Related
prion
prion
Default credentials
2008-03-04 19:44:00
Design/Logic Flaw
2009-02-06 19:30:00
cvelist
cvelist
nvd
nvd
openvas
openvas
GoAhead WebServer Script Source Code Disclosure
2008-08-22 00:00:00
GoAhead WebServer Script Source Code Disclosure
2008-08-22 00:00:00
nessus
nessus
cert
cert
GoAhead WebServer information disclosure and authentication bypass vulnerabilities
2009-02-05 00:00:00
GoAhead Web Server discloses source code of ASP files via crafted URL
2002-12-17 00:00:00
cve
cve
6.6 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.055 Low
EPSS
Percentile
93.2%
Related for CVE-2007-6702