Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5158

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5158
Last Modified 07 Mar 2011 10:14:03
Published 18 Nov 2008 04:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5158

Summary

Client Software WinCom LPD Total 3.0.2.623 and earlier allows remote attackers to bypass authentication and perform administrative actions via vectors involving "simply skipping the auth stage."

Vulnerable Systems

Application

  • Clientsoftware Wincome Mpd Total 3.0.2.623


References

VUPEN - ADV-2008-0410

BID - 27614

BUGTRAQ - 20080204 Multiple vulnerabilities in WinCom LPD Total 3.0.2.623

SREASON - 4610

SECUNIA - 28763

MISC - http://aluigi.org/poc/wincomalpd.zip

MISC - http://aluigi.org/adv/wincomalpd-adv.txt


Last Updated: 27 May 2016 10:48:43