Vulnerability Description
Dataprobe iBootBar (with 2007-09-20 and possibly later beta firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCCOOKIE cookie.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Dataprobe | Ibootbar Firmware | <= 2007-09-20 |
| Dataprobe | Ibootbar | - |
Related Weaknesses (CWE)
References
- http://blog.tmcnet.com/blog/tom-keating/computer-hardware/dataprobe-ibootbar-revTechnical DescriptionThird Party Advisory
- http://blog.tmcnet.com/blog/tom-keating/computer-hardware/dataprobe-ibootbar-revTechnical DescriptionThird Party Advisory
FAQ
What is CVE-2007-6760?
CVE-2007-6760 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Dataprobe iBootBar (with 2007-09-20 and possibly later beta firmware) allows remote attackers to bypass authentication, and conduct power-cycle attacks on connected devices, via a DCCOOKIE cookie.
How severe is CVE-2007-6760?
CVE-2007-6760 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2007-6760?
Check the references section above for vendor advisories and patch information. Affected products include: Dataprobe Ibootbar Firmware, Dataprobe Ibootbar.