Lucene search
PRIOn knowledge basePRION:CVE-2007-4991HistorySep 21, 2007 - 7:17 p.m.
Design/Logic Flaw
2007-09-2119:17:00
PRIOn knowledge base
www.prio-n.com
1
6.6 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.965 High
EPSS
Percentile
99.6%
The SOCKS4 Proxy in Microsoft Internet Security and Acceleration (ISA) Server 2004 SP1 and SP2 allows remote attackers to obtain potentially sensitive information (the destination IP address of another user’s session) via an empty packet.
| CPE | Name | Operator | Version |
|---|---|---|---|
| isa_server | eq | 2004 sp1 | |
| isa_server | eq | 2004 sp2 |
Related
cve
cve
CVE-2007-4991
2007-09-21 19:17:00
zdi
zdi
Microsoft ISA Server SOCKS4 Proxy Connection Leakage Vulnerability
2007-09-20 00:00:00
securityvulns
securityvulns
Microsoft ISA SOCKSv4 information leak
2007-09-22 00:00:00
ZDI-07-053: Microsoft ISA Server SOCKS4 Proxy Connection Leakage
2007-09-22 00:00:00
6.6 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.965 High
EPSS
Percentile
99.6%
Related for PRION:CVE-2007-4991