Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1905

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2011-1905
Last Modified 31 May 2011 12:00:00
Published 05 May 2011 10:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1905

Summary

Multiple cross-site request forgery (CSRF) vulnerabilities in unspecified administrative modules in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allow remote attackers to hijack the authentication of administrators via unknown vectors.

Vulnerable Systems

Application

  • Proofpoint Messaging Security Gateway 6.2.0.263%3a6.2.0.237

  • Proofpoint Protection Server 5.5.3

  • Proofpoint Protection Server 5.5.4

  • Proofpoint Protection Server 5.5.5

  • Proofpoint Protection Server 6.0.2

  • Proofpoint Protection Server 6.1.1

  • Proofpoint Protection Server 6.2.0


References

CERT-VN - VU#790980

MISC - https://support.proofpoint.com/article.cgi?article_id=338413

MISC - http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php


Last Updated: 27 May 2016 10:56:51