CVE-2008-6701

2009-04-1015:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

77.0%

JSON

NetScout (formerly Network General) Visualizer V2100 and InfiniStream i1730 do not restrict access to ResourceManager/en_US/domains/add_domain.jsp, which allows remote attackers to gain administrator privileges via a direct request.

References

osvdb.org/46195

secunia.com/advisories/30514

www.securityfocus.com/archive/1/493171/100/0/threaded

exchange.xforce.ibmcloud.com/vulnerabilities/42938