CVE-2007-6098

Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-console login attempts with nonexistent usernames, which might make it easier for attackers with physical access to guess valid login credentials while avoiding detection.
Configurations

Configuration 1

cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*
cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*

Information

Published : 2007-11-22 12:46

Updated : 2008-11-15 07:03


NVD link : CVE-2007-6098

Mitre link : CVE-2007-6098

Products Affected
No products.