Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:MISC:LINBIT-LINBOX-BYPASS

Severity

 High

Recommended

 No

Recommended Action

 Drop

Category

 HTTP

Keywords

 Linbit Linbox Authentication Bypass

Release Date

 2005/02/15

Update Number

 1213

Supported Platforms

 idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Linbit Linbox Authentication Bypass


Linbox suffers from multiple vulnerabilities, including authentication circumvention for the administration portal, user password disclosure.

Extended Description

It has been reported that LINBOX is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow access to web based administration scripts without proper authorization. This issue may allow unauthorized user to gain access to the administration scripts of the affected system.

Affected Products

  • LinBit Technologies LINBOX Officeserver

References

  • BugTraq: 10010
  • CVE: CVE-2004-1878
  • URL: http://archives.neohapsis.com/archives/bugtraq/2004-03/0329.html
  • URL: http://www.websec.org/adv/linbit.txt.html

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out