Lucene search
MitreCVE-2007-2354HistoryApr 30, 2007 - 10:19 p.m.
CVE-2007-2354
2007-04-3022:19:00
mitre
web.nvd.nist.gov
39
cve-2007-2354
progress webspeed messenger
remote attackers
sensitive information
wservice parameter
operating system
product information
nvd
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.006
Percentile
78.9%
Progress Webspeed Messenger allows remote attackers to obtain sensitive information via a WService parameter containing “wsbroker1/webutil/about.r”, which reveals the operating system and product information.
Affected configurations
Node
progresswebspeed_messenger
| Vendor | Product | Version | CPE |
|---|---|---|---|
| progress | webspeed_messenger | * | cpe:2.3:a:progress:webspeed_messenger:*:*:*:*:*:*:*:* |
Related
nvd
nvd
CVE-2007-2354
2007-04-30 22:19:00
cvelist
cvelist
CVE-2007-2354
2007-04-30 22:00:00
prion
prion
Information disclosure
2007-04-30 22:19:00
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:C/I:N/A:N
AI Score
6.2
Confidence
Low
EPSS
0.006
Percentile
78.9%
Related for CVE-2007-2354