Vulnerability Description
CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user information in log files with predictable names, which allows remote attackers to obtain this information via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Etrust Integrated Threat Management | 8.1 |
Related Weaknesses (CWE)
References
- http://osvdb.org/43487
- http://securityreason.com/securityalert/3219
- http://www.eleytt.com/advisories/eleytt_ETRUSTITM1.pdfVendor Advisory
- http://www.securityfocus.com/archive/1/482021/100/0/threaded
- http://www.securityfocus.com/bid/26012
- http://osvdb.org/43487
- http://securityreason.com/securityalert/3219
- http://www.eleytt.com/advisories/eleytt_ETRUSTITM1.pdfVendor Advisory
- http://www.securityfocus.com/archive/1/482021/100/0/threaded
- http://www.securityfocus.com/bid/26012
FAQ
What is CVE-2007-5439?
CVE-2007-5439 is a vulnerability with a CVSS score of 5.0 (MEDIUM). CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user information in log files with predictable names, which allows remote attackers to obtain this information via un...
How severe is CVE-2007-5439?
CVE-2007-5439 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5439?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Etrust Integrated Threat Management.