CVE-2007-0188

Currently unrated

Key Information:

Vendor: F5
Status: Firepass
Vendor: CVE Published:; 12 January 2007

Summary

F5 FirePass 5.4 through 5.5.1 does not properly enforce host access restrictions when a client uses a single integer (dword) representation of an IP address ("dotless IP address"), which allows remote authenticated users to connect to the FirePass administrator console and certain other network resources.

References

http://www.mnin.org/advisories/2007_firepass.pdf

x_refsource_MISC

https://tech.f5.com/home/solutions/sol6922.html

x_refsource_CONFIRM

http://secunia.com/advisories/23640

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jan 12, 2007
Vulnerability Reserved
Jan 10, 2007