Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-0932
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-14 Feb, 2007 | 11:28
Updated At-16 Oct, 2018 | 16:35

The (1) Aruba Mobility Controllers 200, 600, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Date Added: N/A
Due Date: N/A
Vulnerability Name: N/A
Required Action: N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.07.5HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Type: Primary
Version: 2.0
Base score: 7.5
Base severity: HIGH
Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P
CPE Matches
Alcatel-Lucent Enterprise (ALE International)
alcatel-lucent
>>omniaccess_wireless>>43xx
cpe:2.3:h:alcatel-lucent:omniaccess_wireless:43xx:*:*:*:*:*:*:*
Alcatel-Lucent Enterprise (ALE International)
alcatel-lucent
>>omniaccess_wireless>>6000
cpe:2.3:h:alcatel-lucent:omniaccess_wireless:6000:*:*:*:*:*:*:*
aruba
aruba
>>mobility_controller>>200
cpe:2.3:h:aruba:mobility_controller:200:*:*:*:*:*:*:*
aruba
aruba
>>mobility_controller>>800
cpe:2.3:h:aruba:mobility_controller:800:*:*:*:*:*:*:*
aruba
aruba
>>mobility_controller>>2400
cpe:2.3:h:aruba:mobility_controller:2400:*:*:*:*:*:*:*
aruba
aruba
>>mobility_controller>>6000
cpe:2.3:h:aruba:mobility_controller:6000:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-264Primarynvd@nist.gov
CWE ID: CWE-264
Type: Primary
Source: nvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052382.htmlcve@mitre.org
Vendor Advisory
http://osvdb.org/33185cve@mitre.org
N/A
http://secunia.com/advisories/24144cve@mitre.org
Vendor Advisory
http://securityreason.com/securityalert/2243cve@mitre.org
N/A
http://www.kb.cert.org/vuls/id/613833cve@mitre.org
Third Party Advisory
US Government Resource
http://www.securityfocus.com/archive/1/459927/100/0/threadedcve@mitre.org
N/A
http://www.securityfocus.com/bid/22538cve@mitre.org
N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/32461cve@mitre.org
N/A
Hyperlink: http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052382.html
Source: cve@mitre.org
Resource:
Vendor Advisory
Hyperlink: http://osvdb.org/33185
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://secunia.com/advisories/24144
Source: cve@mitre.org
Resource:
Vendor Advisory
Hyperlink: http://securityreason.com/securityalert/2243
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.kb.cert.org/vuls/id/613833
Source: cve@mitre.org
Resource:
Third Party Advisory
US Government Resource
Hyperlink: http://www.securityfocus.com/archive/1/459927/100/0/threaded
Source: cve@mitre.org
Resource: N/A
Hyperlink: http://www.securityfocus.com/bid/22538
Source: cve@mitre.org
Resource: N/A
Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/32461
Source: cve@mitre.org
Resource: N/A
Change History
0Changes found
Details not found