Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2273

Overview

Vulnerability Score 9.0 9.0
CVE Id CVE-2008-2273
Last Modified 05 Sep 2008 05:39:58
Published 16 May 2008 08:54:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-2273

Summary

Unspecified vulnerability in the TACACS authentication component in Aruba Mobility Controller 3.1.x, 3.2.x, and 3.3.x allows remote authenticated users to gain privileges via unknown vectors.

Vulnerable Systems

Operating System

  • Arubanetworks Arubaos 3.1

  • Arubanetworks Arubaos 3.2

  • Arubanetworks Arubaos 3.3


References

CONFIRM - http://www.arubanetworks.com/support/alerts/aid-051408.asc

SECUNIA - 30262

XF - aruba-tacacs-security-bypass(42434)

SECTRACK - 1020032

BID - 29240

BUGTRAQ - 20080515 Aruba Mobility Controller TACACS User Authentication and Cross Site Scripting Vulnerabilities (Aruba Advisory ID: AID-051408)


Last Updated: 27 May 2016 10:47:48