CVE-2009-4406

CVE-2009-4406 is an XSS in the APC Network Monitoring/Card web interface. The vulnerability affects the NMC login form: Forms/login1?login_username on AP7932 B2 devices (rpdu 3.3.3 or 3.7.0 on AOS 3.3.4 and possibly other versions) allowing remote attackers to inject arbitrary script/HTML. Conseq...

Authentication flaw

The American Power Conversion APC AP7932 0u 30amp Switched Rack Power Distribution Unit PDU, with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login...

CVE-2007-6226

The American Power Conversion APC AP7932 0u 30amp Switched Rack Power Distribution Unit PDU, with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login...

CVE-2007-6226

The CVE-2007-6226 entry concerns the APC AP7932 0u 30A Switched Rack PDU. Affected components are the RPDU firmware 3.5.5 and AOS 3.5.6. The root cause is an authentication bypass that allows remote attackers to gain login access by initiating a login while another client is already logged in, th...