HTTP: Linbit Linbox Authentication Bypass
Linbox suffers from multiple vulnerabilities, including authentication circumvention for the administration portal, user password disclosure.
Extended Description
It has been reported that LINBOX is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow access to web based administration scripts without proper authorization. This issue may allow unauthorized user to gain access to the administration scripts of the affected system.
Affected Products
Linbit_technologies linbox_officeserver
References
BugTraq: 10010
CVE: CVE-2004-1878
URL: http://archives.neohapsis.com/archives/bugtraq/2004-03/0329.html http://www.websec.org/adv/linbit.txt.html
Short Name
HTTP:MISC:LINBIT-LINBOX-BYPASS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
Authentication Bypass CVE-2004-1878 Linbit Linbox bid:10010
Release Date
02/15/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Linbit_technologies
CVSS Score
5.0