Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2015-0929

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2015-0929
Last Modified 04 Feb 2015 12:33:26
Published 03 Feb 2015 05:59:03
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2015-0929

Summary

time.htm in the web interface on SerVision HVG Video Gateway devices with firmware before 2.2.26a78 allows remote attackers to bypass authentication and obtain administrative access by leveraging a cookie received in an HTTP response.

Vulnerable Systems

Operating System

  • Servision Hvg Video Gateway Firmware 2.2.26a77


References

CERT-VN - VU#522460


Last Updated: 27 May 2016 11:07:41