Vulnerabilities > Esoft
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-07-15 | CVE-2007-3788 | Information Disclosure vulnerability in Esoft Instagate EX2 UTM Firmware3.1.20031001/Firmware3.1.20060921/Firmware3.1.20070605 The eSoft InstaGate EX2 UTM device stores the admin password within the settings HTML document, which might allow context-dependent attackers to obtain sensitive information by reading this document. | 7.6 |
2007-07-15 | CVE-2007-3787 | Denial-Of-Service vulnerability in Esoft Instagate EX2 UTM Firmware3.1.20031001/Firmware3.1.20060921/Firmware3.1.20070605 The eSoft InstaGate EX2 UTM device does not require entry of the old password when changing the admin password, which might allow remote attackers to gain privileges by conducting a CSRF attack, making a password change from an unattended workstation, or other attacks. | 7.5 |