| ID |
CVE-2007-0434
|
| Summary |
BEA AquaLogic Enterprise Security 2.0 through 2.0 SP2, 2.1 through 2.1 SP1, and 2.2 does not properly set the severity level of audit events when the system load is high, which might make it easier for attackers to avoid detection. |
| References |
|
| Vulnerable Configurations |
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:*:*:*:*:*:*:*
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:sp1:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:sp1:*:*:*:*:*:*
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:sp2:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.0:sp2:*:*:*:*:*:*
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.1:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.1:*:*:*:*:*:*:*
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.1:sp1:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.1:sp1:*:*:*:*:*:*
-
cpe:2.3:a:bea:aqualogic_enterprise_security:2.2:*:*:*:*:*:*:*
cpe:2.3:a:bea:aqualogic_enterprise_security:2.2:*:*:*:*:*:*:*
|
| CVSS |
| Base: | 4.6 (as of 13-11-2008 - 06:31) |
| Impact: | |
| Exploitability: | |
|
| CWE |
NVD-CWE-Other |
| CAPEC |
|
| Access |
| Vector | Complexity | Authentication |
| LOCAL |
LOW |
NONE |
|
| Impact |
| Confidentiality | Integrity | Availability |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| cvss-vector
via4
|
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
| refmap
via4
|
| bea | BEA07-153.00 | | bid | 22082 | | osvdb | 32860 | | secunia | 23786 |
|
| Last major update |
13-11-2008 - 06:31 |
| Published |
23-01-2007 - 02:28 |
| Last modified |
13-11-2008 - 06:31 |
