Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5057

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-5057
Last Modified 05 Sep 2008 05:29:46
Published 24 Sep 2007 06:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5057

Summary

NetSupport Manager Client before 10.20.0004 allows remote attackers to bypass the (1) basic and (2) authentication schemes by spoofing the NetSupport Manager.

Vulnerable Systems

Application

  • Netsupport Manager Client 10.00

  • Netsupport Manager Client 10.20

  • Netsupport Manager Client 5.00

  • Netsupport Manager Client 5.01

  • Netsupport Manager Client 5.02

  • Netsupport Manager Client 5.02 F1

  • Netsupport Manager Client 5.03

  • Netsupport Manager Client 5.05

  • Netsupport Manager Client 5.30

  • Netsupport Manager Client 5.31

  • Netsupport Manager Client 6.00

  • Netsupport Manager Client 6.10

  • Netsupport Manager Client 6.11

  • Netsupport Manager Client 7.01

  • Netsupport Manager Client 7.10

  • Netsupport Manager Client 8.00

  • Netsupport Manager Client 8.10

  • Netsupport Manager Client 8.50

  • Netsupport Manager Client 8.60

  • Netsupport Manager Client 9.00

  • Netsupport Manager Client 9.10

  • Netsupport Manager Client 9.50

  • Netsupport Manager Client 9.60


References

BID - 25761

BUGTRAQ - 20070921 DDIVRT-2007-04 NetSupport Manager Authentication Bypass

CONFIRM - http://www.netsupportsoftware.com/support/td.asp?td=543&Site=nsltd&Lang=

XF - netsupportmanager-security-bypass(36726)

SECTRACK - 1018732

SREASON - 3163

SECUNIA - 26927


Last Updated: 27 May 2016 10:46:02