Vulnerability Description
The eSoft InstaGate EX2 UTM device stores the admin password within the settings HTML document, which might allow context-dependent attackers to obtain sensitive information by reading this document.
CVSS Score
7.6
HIGH
AV:N/AC:H/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Esoft | Instagate Ex2 Utm | firmware_3.1.20031001 |
References
- http://labs.calyptix.com/CX-2007-05.phpPatchVendor Advisory
- http://labs.calyptix.com/CX-2007-05.txtPatchVendor Advisory
- http://osvdb.org/38173
- http://secunia.com/advisories/26005
- http://www.securityfocus.com/archive/1/473663/100/0/threaded
- http://labs.calyptix.com/CX-2007-05.phpPatchVendor Advisory
- http://labs.calyptix.com/CX-2007-05.txtPatchVendor Advisory
- http://osvdb.org/38173
- http://secunia.com/advisories/26005
- http://www.securityfocus.com/archive/1/473663/100/0/threaded
FAQ
What is CVE-2007-3788?
CVE-2007-3788 is a vulnerability with a CVSS score of 7.6 (HIGH). The eSoft InstaGate EX2 UTM device stores the admin password within the settings HTML document, which might allow context-dependent attackers to obtain sensitive information by reading this document.
How severe is CVE-2007-3788?
CVE-2007-3788 has been rated HIGH with a CVSS base score of 7.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3788?
Check the references section above for vendor advisories and patch information. Affected products include: Esoft Instagate Ex2 Utm.