Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2762

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-2762
Last Modified 21 Sep 2011 11:32:21
Published 02 Sep 2011 12:55:04
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-2762

Summary

The web interface on the LifeSize Room appliance LS_RM1_3.5.3 (11) allows remote attackers to bypass authentication via unspecified data associated with a "true" authentication status, related to AMF data and the LSRoom_Remoting.authenticate function in gateway.php.

Vulnerable Systems

Application

  • Lifesize Room Appliance Software Ls Rm1 3.5.3


References

CERT-VN - VU#213486

XF - lifesize-room-security-bypass(69445)

BID - 49330

BUGTRAQ - 20110828 LifeSize Room Vulnerabilities

MISC - http://www.securestate.com/Documents/LifeSize_Room_Advisory.txt

SREASON - 8364


Last Updated: 27 May 2016 10:57:06