CVE-2007-1168 — Micro Serverprotect vulnerability

3 documents3 sources

Severity

7.5HIGHNVD

EPSS

1.4%

top 19.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Trend Micro Serverprotect

Timeline

PublishedMar 2

Latest updateMay 1

Description

Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 allows remote attackers to access arbitrary web pages and reconfigure the product via HTTP requests with the splx_2376_info cookie to the web interface port (14942/tcp).

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDtrend_micro/serverprotect1.25_2007-02-16, 1.3, 2.5+2

Patches

Patch: secunia.com ↗Patch: securitytracker.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-34jj-j7vv-x8fp: Trend Micro ServerProtect for Linux (SPLX) 1↗2022-05-01

▶

CVEList

CVE-2007-1168: Trend Micro ServerProtect for Linux (SPLX) 1↗2007-02-28

▶