Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6226


Vulnerability Score 7.1 7.1
CVE Id CVE-2007-6226
Last Modified 05 Sep 2008 05:32:42
Published 04 Dec 2007 01:46:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



The American Power Conversion (APC) AP7932 0u 30amp Switched Rack Power Distribution Unit (PDU), with rpdu 3.5.5 and aos 3.5.6, allows remote attackers to bypass authentication and obtain login access by making a login attempt while a different client is logged in, and then resubmitting the login attempt once the other client exits.

Vulnerable Systems


  • Apc Oas 3.5.6

  • Apc Switched Rack Pdu Firmware 3.5.5


XF - apc-pdu-unspecified-security-bypass(38783)

BID - 26636

BUGTRAQ - 20071129 APC Management Vulnerability

SECTRACK - 1019018

SREASON - 3418

Last Updated: 27 May 2016 10:46:24