CVE-2011-5100
First published: Wed Aug 22 2012(Updated: )
The web interface in McAfee Firewall Reporter before 5.1.0.13 does not properly implement cookie authentication, which allows remote attackers to obtain access, and disable anti-virus functionality, via an HTTP request.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Mcafee Firewall Reporter | <=5.1.0.6 | |
| McAfee Firewall Reporter | <=5.1.0.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2011-5100?
CVE-2011-5100 is classified as a high severity vulnerability due to its potential impact on system security and functionality.
How do I fix CVE-2011-5100?
To fix CVE-2011-5100, upgrade the McAfee Firewall Reporter to version 5.1.0.13 or later.
What are the consequences of exploiting CVE-2011-5100?
Exploiting CVE-2011-5100 allows attackers to gain unauthorized access and disable anti-virus functionality on affected systems.
Which versions of McAfee Firewall Reporter are affected by CVE-2011-5100?
CVE-2011-5100 affects versions of McAfee Firewall Reporter prior to 5.1.0.13.
Is the cookie authentication in McAfee Firewall Reporter secure?
No, the cookie authentication in versions before 5.1.0.13 is not secure and can be bypassed by remote attackers.
- collector/nvd-historical
- collector/nvd-index
- agent/softwarecombine
- agent/type
- agent/weakness
- agent/references
- agent/author
- agent/severity
- agent/description
- agent/tags
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- vendor/mcafee
- canonical/mcafee firewall reporter
- version/mcafee firewall reporter/5.1.0.6