Detections
Analytics

CVE-2007-1168

high

Description

Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 allows remote attackers to access arbitrary web pages and reconfigure the product via HTTP requests with the splx_2376_info cookie to the web interface port (14942/tcp).

References

http://www.vupen.com/english/advisories/2007/0691

http://www.trendmicro.com/download/product.asp?productid=20

http://www.securityfocus.com/bid/22662

http://securitytracker.com/id?1017685

http://secunia.com/advisories/24264

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=477

Details

Source: Mitre, NVD

Published: 2007-03-02

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High