CVE-2011-1007 in Bestpracticalinformation

Résumé

par MITRE

Best Practical Solutions RT before 3.8.9 does not perform certain redirect actions upon a login, which allows physically proximate attackers to obtain credentials by resubmitting the login form via the back button of a web browser on an unattended workstation after an RT logout.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Réserver

14/02/2011

Divulgation

28/02/2011

Modérer

accepté

Entrée

VDB-56638

CPE

prêt

CWE

CWE-255 (confirmé)

CVSS

2.1 (NVD)

EPSS

0.00397

KEV

non

Activités

très faible

Secteur

Pharma, Transportation, ...

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-1007
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-1007
CVE Details	https://www.cvedetails.com/cve/CVE-2011-1007/

◂ Précédent Aperçu Suivant ▸

Do you know our Splunk app?

Download it now for free!