Lucene search
MitreCVE-2007-1169HistoryMar 02, 2007 - 9:18 p.m.
CVE-2007-1169
2007-03-0221:18:00
mitre
web.nvd.nist.gov
25
trend micro
serverprotect
linux
web interface
logon
unencrypted http
remote attackers
network sniffing
credentials
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.2%
The web interface in Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network.
Affected configurations
Node
trend_microserverprotectMatch1.25_2007-02-16linux
ORtrend_microserverprotectMatch1.25_2007-02-161.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| trend_micro | serverprotect | 1.25_2007-02-16 | cpe:2.3:a:trend_micro:serverprotect:1.25_2007-02-16:*:linux:*:*:*:*:* |
| trend_micro | serverprotect | 1.25_2007-02-16 | cpe:2.3:a:trend_micro:serverprotect:1.25_2007-02-16:1.3:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2007-1169
2007-03-02 21:18:00
cvelist
cvelist
CVE-2007-1169
2007-02-28 15:00:00
prion
prion
Design/Logic Flaw
2007-03-02 21:18:00
securityvulns
securityvulns
Trend Micro Server Protect unauthorized access
2007-02-22 00:00:00
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
AI Score
6.7
Confidence
Low
EPSS
0.004
Percentile
73.2%
Related for CVE-2007-1169