CVE-2007-1062 - CVE Reference - Advisories

CVE Reference: CVE-2007-1062

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2007-1062

Description: The Cisco Unified IP Conference Station 7935 3.2(15) and earlier, and Station 7936 3.3(12) and earlier does not properly handle administrator HTTP sessions, which allows remote attackers to bypass authentication controls via a direct URL request to the administrative HTTP interface for a limited time

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/32623 ST 1017680 SAID Secunia Advisory: SA24262 CISCO http://www.cisco.com/warp/public/707/cisco-sa-20070221-phone.shtml http://www.cisco.com/warp/public/707/cisco-air-20070221-phone.shtml BID 22647

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Cisco ASA and PIX Security Appliances Multiple Vulnerabilities

2.	FreeBSD ICMPv6 "Packet Too Big" MTU Denial of Service Vulnerability

3.	rPath update for libtiff

4.	HP OpenView Select Identity Connectors Information Disclosure

5.	IBM AIX "swcons" Command Privilege Escalation Vulnerability

6.	Cisco Secure ACS EAP Packet Denial of Service

7.	SUSE update for IBMJava5-JRE and java-1_5_0-ibm

8.	Gentoo update for realplayer

9.	Django Authentication Cross-Site Request Forgery

10.	Najdi.si Toolbar Buffer Overflow Vulnerability