CVE-2007-1169

The web interface in Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 accepts logon requests through unencrypted HTTP, which might allow remote attackers to obtain credentials by sniffing the network.

Published: Mar 2, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-1169
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:P/I:N/A:N

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
trend_micro / serverprotect	1.25_2007-02-16	1.25_2007-02-16.x
trend_micro / serverprotect	1.25_2007-02-16-1.3	1.25_2007-02-16-1.3.x

http://www.trendmicro.com/download/product.asp?productid=20

Vulnerability Database

289,784

CVE-2007-1169