Design/Logic Flaw

2007-11-2200:46:00

PRIOn knowledge base

www.prio-n.com

7 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.3%

JSON

Ingate Firewall before 4.6.0 and SIParator before 4.6.0 use cleartext storage for passwords of “administrators with less privileges,” which might allow attackers to read these passwords via unknown vectors.

CPENameOperatorVersion
ingate_firewallle4.5.2
ingate_siparatorle4.5.2

CPE	Name	Operator	Version
	ingate_firewall	le	4.5.2
	ingate_siparator	le	4.5.2

References

osvdb.org/42171

secunia.com/advisories/27688

www.ingate.com/relnote-460.php

www.securityfocus.com/bid/26486