CVE-2007-3464 in Safe@Office 500 Utminfo

Zusammenfassung (Englisch)

Check Point SofaWare Safe@Office, with firmware before Embedded NGX 7.0.45 GA, does not require entry of the old password when changing the admin password, which might allow attackers to gain privileges by conducting a CSRF attack, making a password change on an unattended workstation, or other vectors.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

Reservieren

27.06.2007

Veröffentlichung

27.06.2007

Status

Bestätigt

Einträge

VulDB provides additional information and datapoints for this CVE:

ID	Schwachstelle	CWE	Aus	Mas	CVE
37538	SofaWare Safe@Office 500 Utm Cross Site Request Forgery	352	Unbewiesen	Offizieller Fix	CVE-2007-3464

Beschreibung

CPE

CWE

CVSS

Exploits

History

Diff

Verknüpfen

Threat Intelligence

API JSON

API XML

API CSV

Quellen

MITRE
NVD
CVE Details

◂ ZurückÜbersichtWeiter ▸

Do you need the next level of professionalism?

Upgrade your account now!