Lucene search

[email protected]NVD:CVE-2007-6096

HistoryNov 22, 2007 - 12:46 a.m.

CVE-2007-6096

2007-11-2200:46:00

CWE-255

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.004

Percentile

74.1%

JSON

Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of “administrators with less privileges,” which might allow attackers to read these passwords via unknown vectors.

Affected configurations

Nvd

Node

ingateingate_firewallRange≤4.5.2

ingateingate_siparatorRange≤4.5.2

VendorProductVersionCPE
ingateingate_firewall*cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*
ingateingate_siparator*cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ingate	ingate_firewall	*	cpe:2.3:h:ingate:ingate_firewall::::::::
ingate	ingate_siparator	*	cpe:2.3:h:ingate:ingate_siparator::::::::

References

osvdb.org/42171

secunia.com/advisories/27688

www.ingate.com/relnote-460.php

www.securityfocus.com/bid/26486

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.5

Confidence

Low

EPSS

0.004

Percentile

74.1%

JSON

Related for NVD:CVE-2007-6096

cve1 prion1 cvelist1