Unauthenticated Access to Sensitive Information in F-Secure Internet Gatekeeper for Linux

Unauthenticated Access to Sensitive Information in F-Secure Internet Gatekeeper for Linux

CVE-2011-0453 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

F-Secure Internet Gatekeeper for Linux 3.x before 3.03 does not require authentication for reading access logs, which allows remote attackers to obtain potentially sensitive information via a TCP session on the admin UI port.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.