Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0476

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2008-0476
Last Modified 05 Sep 2008 05:35:11
Published 29 Jan 2008 03:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0476

Summary

ManageEngine Applications Manager 8.1 build 8100 does not check authentication for monitorType.do and unspecified other pages, which allows remote attackers to obtain sensitive information and change settings via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Manageengine Applications Manager 8.1 Build 8100


References

XF - manageengine-checks-security-bypass(39915)

BID - 27443

SECUNIA - 28332


Last Updated: 27 May 2016 10:46:48