Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6701

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6701
Last Modified 13 Apr 2009 12:00:00
Published 10 Apr 2009 06:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6701

Summary

NetScout (formerly Network General) Visualizer V2100 and InfiniStream i1730 do not restrict access to ResourceManager/en_US/domains/add_domain.jsp, which allows remote attackers to gain administrator privileges via a direct request.

Vulnerable Systems


References

XF - networkgeneral-adddomain-security-bypass(42938)

BUGTRAQ - 20080606 Vulnerability in Network General/Net Scout product

SECUNIA - 30514

OSVDB - 46195


Last Updated: 27 May 2016 10:49:18