CVE-2010-0153

Name of the Vulnerable Software and Affected Versions IBM Proventia Network Mail Security System (PNMSS) appliance versions prior to 2.5.0.2

Description The issue affects the Local Management Interface (LMI) on the IBM Proventia Network Mail Security System (PNMSS) appliance, where multiple cross-site request forgery (CSRF) vulnerabilities exist. These vulnerabilities allow remote attackers to hijack the authentication of administrators for requests, enabling them to change settings or conduct denial of service attacks.

Recommendations For versions prior to 2.5.0.2, update the firmware to version 2.5.0.2 or later to resolve the issue. As a temporary workaround, consider restricting access to the LMI to minimize the risk of exploitation.