Vulnerability Details : CVE-2007-1345
Unspecified vulnerability in cube.exe in the GINA component for CA (Computer Associates) eTrust Admin 8.1.0 through 8.1.2 allows attackers with physical interactive or Remote Desktop access to bypass authentication and gain privileges via the password reset interface.
Exploit prediction scoring system (EPSS) score for CVE-2007-1345
Probability of exploitation activity in the next 30 days: 0.07%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 29 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2007-1345
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
4.1
|
MEDIUM | AV:L/AC:M/Au:S/C:P/I:P/A:P |
2.7
|
6.4
|
NIST |
References for CVE-2007-1345
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/32887
-
http://www.securityfocus.com/archive/1/462312/100/0/threaded
-
http://www.securityfocus.com/bid/22885
-
http://securityreason.com/securityalert/2404
-
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=35145
Patch
-
http://www.vupen.com/english/advisories/2007/0885
-
http://www.securitytracker.com/id?1017740
Products affected by CVE-2007-1345
- cpe:2.3:a:broadcom:etrust_admin:8.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_admin:8.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:etrust_admin:8.1.2:*:*:*:*:*:*:*