CVE-2007-1168
Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
02/03/2007
Last modified:
09/04/2025
Description
Trend Micro ServerProtect for Linux (SPLX) 1.25, 1.3, and 2.5 before 20070216 allows remote attackers to access arbitrary web pages and reconfigure the product via HTTP requests with the splx_2376_info cookie to the web interface port (14942/tcp).
Impact
Base Score 2.0
7.50
Severity 2.0
HIGH
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:trend_micro:serverprotect:1.3:*:linux:*:*:*:*:* | ||
| cpe:2.3:a:trend_micro:serverprotect:1.25_2007-02-16:*:linux:*:*:*:*:* | ||
| cpe:2.3:a:trend_micro:serverprotect:2.5:*:linux:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=477
- http://secunia.com/advisories/24264
- http://securitytracker.com/id?1017685=
- http://www.securityfocus.com/bid/22662
- http://www.trendmicro.com/download/product.asp?productid=20
- http://www.vupen.com/english/advisories/2007/0691
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=477
- http://secunia.com/advisories/24264
- http://securitytracker.com/id?1017685=
- http://www.securityfocus.com/bid/22662
- http://www.trendmicro.com/download/product.asp?productid=20
- http://www.vupen.com/english/advisories/2007/0691