PT-2007-3492 · Bluearc · Bluearc Titan 2X00

Published

2007-04-19

Updated

2018-10-16

CVE-2007-2150

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions BlueArc Titan 2x00 devices with firmware 4.2.944b

Description The issue allows remote attackers to redirect traffic to other sites via the PORT command. This is related to an FTP bounce attack.

Recommendations For BlueArc Titan 2x00 devices with firmware 4.2.944b, consider restricting access to the FTP service until a patch is available. As a temporary workaround, disabling the use of the PORT command may help minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2150

Affected Products

Bluearc Titan 2X00

PT-2007-3492 · Bluearc · Bluearc Titan 2X00

CVE-2007-2150

Related Identifiers

Affected Products

References · 5