Ingate Firewall before 4.6.0 and SIParator before 4.6.0 do not log truncated (1) ICMP, (2) UDP, and (3) TCP packets, which has unknown impact and remote attack vectors; and do not log (4) serial-console login attempts with nonexistent usernames, which might make it easier for attackers with physical access to guess valid login credentials while avoiding detection.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-11-22T00:00:00
Updated: 2008-11-15T10:00:00
Reserved: 2007-11-21T00:00:00
Link: CVE-2007-6098
JSON object: View
NVD Information
Status : Modified
Published: 2007-11-22T00:46:00.000
Modified: 2008-11-15T07:03:20.267
Link: CVE-2007-6098
JSON object: View
Redhat Information
No data.
CWE