CVE-2007-0334

Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.ingate.com/relnote-451.php
http://www.securityfocus.com/bid/22080
http://secunia.com/advisories/23737	Patch Vendor Advisory
http://osvdb.org/32831
http://www.vupen.com/english/advisories/2007/0209
https://exchange.xforce.ibmcloud.com/vulnerabilities/31546

Configurations

Configuration 1 (hide)

cpe:2.3:h:ingate:firewall_and_siparator:*:*:*:*:*:*:*:*

Information

Published : 2007-01-17 18:28

Updated : 2017-07-28 18:30

NVD link : CVE-2007-0334

Mitre link : CVE-2007-0334

JSON object : View

CWE

NVD-CWE-Other

Products Affected

ingate

firewall_and_siparator

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.ingate.com/relnote-451.php", "name": "http://www.ingate.com/relnote-451.php", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securityfocus.com/bid/22080", "name": "22080", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/23737", "name": "23737", "tags": ["Patch", "Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://osvdb.org/32831", "name": "32831", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.vupen.com/english/advisories/2007/0209", "name": "ADV-2007-0209", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31546", "name": "ingate-sip-security-bypass(31546)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Unspecified vulnerability in the SIP module in InGate Firewall and SIParator before 4.5.1 allows remote attackers to conduct replay attacks on the authentication mechanism via unknown vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2007-0334", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}}, "publishedDate": "2007-01-18T02:28Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:h:ingate:firewall_and_siparator:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "4.5.0"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-29T01:30Z"}

7.5 /10