Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3349

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-3349
Last Modified 10 Sep 2008 09:12:27
Published 28 Jul 2008 01:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3349

Summary

Multiple unspecified vulnerabilities in NetApp Data ONTAP, as used on NetApp and IBM eServer platforms, allow remote attackers to execute arbitrary commands, cause a denial of service (system crash), or obtain sensitive information, probably related to insufficient access control for HTTP requests. NOTE: this may overlap CVE-2008-3160.

Vulnerable Systems

Operating System

  • Netapp Data Ontap


References

CERT-VN - VU#329772

XF - netapp-dataontap-multiple-unspecified(44265)

MISC - http://now.netapp.com/NOW/products/cpc/cpc0807-03.shtml

MISC - http://now.netapp.com/NOW/products/cpc/cpc0807-02.shtml

MISC - http://now.netapp.com/NOW/products/cpc/cpc0807-01.shtml


Last Updated: 27 May 2016 10:48:10