PT-2007-3492 · Bluearc · Bluearc Titan 2X00

Publicado

2007-04-19

Atualizado

2018-10-16

CVE-2007-2150

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions BlueArc Titan 2x00 devices with firmware 4.2.944b

Description The issue allows remote attackers to redirect traffic to other sites via the PORT command. This is related to an FTP bounce attack.

Recommendations For BlueArc Titan 2x00 devices with firmware 4.2.944b, consider restricting access to the FTP service until a patch is available. As a temporary workaround, disabling the use of the PORT command may help minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-2150

Produtos afetados

Bluearc Titan 2X00

PT-2007-3492 · Bluearc · Bluearc Titan 2X00

CVE-2007-2150

Identificadores relacionados

Produtos afetados

Referências · 5