HTTP: EmuLive Server4 Unauthorized Administrator Access
This signature detects an attempt to gain unauthorized administrative access to an EmuLive Server4 daemon.
Extended Description
Reportedly EmuLive Server4 is affected by an authentication bypass vulnerability and a denial of service vulnerability. These issues are due to an access validation issue and a failure to handle exceptional conditions. An attacker may leverage the authentication bypass issue to gain unauthorized access to the administrator scripts of the affected application, facilitating manipulation of various server settings. The denial of service issue may be exploited to cause the affected computer to freeze, denying service to legitimate users.
Affected Products
Emulive server4
References
BugTraq: 11226
CVE: CVE-2004-1695
URL: http://www.juniper.net/security/auto/vulnerabilities/vuln1974.html http://www.emulive.com/index-main.htm
Short Name
HTTP:MISC:EMULIVE-ADMIN
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
Access Administrator CVE-2004-1695 EmuLive Server4 Unauthorized bid:11226
Release Date
11/03/2004
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Emulive
CVSS Score
10.0