Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4152

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2007-4152
Last Modified 15 Nov 2008 01:55:47
Published 03 Aug 2007 04:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4152

Summary

The Visionsoft Audit on Demand Service (VSAOD) in Visionsoft Audit 12.4.0.0 allows remote attackers to conduct replay attacks by capturing and resending data from the DETAILS and PROCESS sections of a session that schedules an audit.

Vulnerable Systems

Application

  • Visionsoft Audit 12.4.0.0


References

BID - 25153

MISC - http://www.portcullis.co.uk/uplds/advisories/vareplay%2006_044.txt

OSVDB - 46980


Last Updated: 27 May 2016 10:45:46