First published: Thu Jul 05 2007(Updated: )
The web interface in Fujitsu-Siemens Computers PRIMERGY BX300 Switch Blade allows remote attackers to obtain sensitive information by canceling the authentication dialog when accessing a sub-page, which still displays the form field contents of the sub-page, as demonstrated using (1) config/ip_management.htm and (2) config/snmp_config.htm.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Fujitsu Primergy Bx300 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2007-3012 is classified as a medium severity vulnerability.
To mitigate CVE-2007-3012, it is recommended to restrict access to the web interface and apply any available firmware updates.
CVE-2007-3012 allows attackers to gain access to sensitive information displayed in the web interface's form fields.
CVE-2007-3012 affects Fujitsu-Siemens Computers PRIMERGY BX300 Switch Blade.
There is no specific patch mentioned for CVE-2007-3012, but updating the system firmware may help address the vulnerability.