CVE Vulnerabilities

CVE-2015-0932

Published: Apr 05, 2015 | Modified: Apr 15, 2015
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The ANTlabs InnGate firmware on IG 3100, IG 3101, InnGate 3.00 E, InnGate 3.01 E, InnGate 3.02 E, InnGate 3.10 E, InnGate 3.01 G, and InnGate 3.10 G devices does not require authentication for rsync sessions, which allows remote attackers to read or write to arbitrary files via TCP traffic on port 873.

Affected Software

Name Vendor Start Version End Version
Inngate_ig_3.10_g Antlabs * *
Inngate_ig_3.10_e Antlabs * *
Inngate_ig_3.00_e Antlabs * *
Inngate_ig_3.01_e Antlabs * *
Inngate_ig_3100 Antlabs * *
Inngate_ig_3101 Antlabs * *
Inngate_ig_3.02_e Antlabs * *

References