Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-0636

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-0636
Last Modified 19 Aug 2009 01:11:39
Published 12 Feb 2008 03:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-0636

Summary

Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote attackers to obtain sensitive information via a direct request to About/SC_About.htm, which provides version and patch information.

Vulnerable Systems

Application

  • Level Platforms Managed Workplace Service Center 4

  • Level Platforms Managed Workplace Service Center 5

  • Level Platforms Managed Workplace Service Center 6


References

BID - 27702

BUGTRAQ - 20080908 Re: Re: SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability

BUGTRAQ - 20080208 SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability

BUGTRAQ - 20080214 Re: SECURITY ADVISORY - Level Platforms, Inc. Service Center Install Data HTTP Vulnerability

SREASON - 3659


Last Updated: 27 May 2016 10:46:52