CVE-2007-2590

Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allows remote attackers to obtain user names and other sensitive information via a direct request to (1) usrmgr/userList.asp or (2) usrmgr/userStatusList.asp.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:nokia:groupwise_mobile_server:*:*:*:*:*:*:*:*
cpe:2.3:a:nokia:intellisync_mobile_suite:6.4.31.2:*:*:*:*:*:*:*
cpe:2.3:a:nokia:intellisync_mobile_suite:6.6.0.107:*:*:*:*:*:*:*
cpe:2.3:a:nokia:intellisync_mobile_suite:6.6.2.2:*:*:*:*:*:*:*
cpe:2.3:a:nokia:intellisync_wireless_email_express:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-05-11 04:20

Updated : 2024-02-28 11:01


NVD link : CVE-2007-2590

Mitre link : CVE-2007-2590

CVE.ORG link : CVE-2007-2590


JSON object : View

Products Affected

nokia

  • intellisync_mobile_suite
  • intellisync_wireless_email_express
  • groupwise_mobile_server
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor