1. CVE-Search
  2. CVE-2007-0188
ID CVE-2007-0188
Summary F5 FirePass 5.4 through 5.5.1 does not properly enforce host access restrictions when a client uses a single integer (dword) representation of an IP address ("dotless IP address"), which allows remote authenticated users to connect to the FirePass administrator console and certain other network resources.
References
Vulnerable Configurations
  • cpe:2.3:h:f5:firepass:5.4:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.1:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.1:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.2:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.2:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.3:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.3:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.4:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.4:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.5:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.5:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.6:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.6:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.7:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.7:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.8:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.8:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.4.9:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.4.9:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.5:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.5:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.5.1:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.5.1:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:5.5.2:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:5.5.2:*:*:*:*:*:*:*
  • cpe:2.3:h:f5:firepass:6.0:*:*:*:*:*:*:*
    cpe:2.3:h:f5:firepass:6.0:*:*:*:*:*:*:*
CVSS
Base: 6.5 (as of 05-09-2008 - 21:17)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW SINGLE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:S/C:P/I:P/A:P
refmap via4
bid 21957
confirm https://tech.f5.com/home/solutions/sol6922.html
fulldisc 20070106 NNL-Labs & MNIN - F5 FirePass Security Advisory
misc http://www.mnin.org/advisories/2007_firepass.pdf
osvdb 32734
secunia 23640
Last major update 05-09-2008 - 21:17
Published 12-01-2007 - 05:04
Last modified 05-09-2008 - 21:17
Back to Top