Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6226

Overview

Vulnerability Score 7.1 7.1
CVE Id CVE-2007-6226
Last Modified 05 Sep 2008 05:32:42
Published 04 Dec 2007 01:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-6226

Summary

The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login attempt once the other client exits.

Vulnerable Systems

Application

  • Apc Oas 3.5.6

  • Apc Switched Rack Pdu Firmware 3.5.5


References

XF - apc-pdu-unspecified-security-bypass(38783)

BID - 26636

BUGTRAQ - 20071129 APC Management Vulnerability

SECTRACK - 1019018

SREASON - 3418


Last Updated: 27 May 2016 10:46:24