CVE-2007-5578

Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qry_alert.php, and possibly other vectors.
Configurations

Configuration 1 (hide)

cpe:2.3:a:secureideas:basic_analysis_and_security_engine:1.3.6:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-10-18 22:17

Updated : 2024-02-28 11:01


NVD link : CVE-2007-5578

Mitre link : CVE-2007-5578

CVE.ORG link : CVE-2007-5578


JSON object : View

Products Affected

secureideas

  • basic_analysis_and_security_engine
CWE
CWE-287

Improper Authentication