oval:org.mitre.oval:def:5649
| Definition Id: oval:org.mitre.oval:def:5649 | |||
| Oval ID: | oval:org.mitre.oval:def:5649 | ||
| Title: | Radius OTP Bypass Vulnerability | ||
| Description: | Microsoft Internet Security and Acceleration (ISA) Server 2006 Gold and SP1, when Radius OTP is enabled, uses the HTTP-Basic authentication method, which allows remote attackers to gain the privileges of an arbitrary account, and access published web pages, via vectors involving attempted access to a network resource behind the ISA Server, aka "Radius OTP Bypass Vulnerability." | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2009-1135 | Version: | 5 |
| Platform(s): | Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Security and Acceleration Server 2006 |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:6052 | |||
| Oval ID: | oval:org.mitre.oval:def:6052 | ||
| Title: | Microsoft Internet Security and Acceleration Server 2006 | ||
| Description: | Microsoft Internet Security and Acceleration Server 2006 is installed. | ||
| Family: | windows | Class: | inventory |
| Reference(s): | cpe:/a:microsoft:isa_server:2006 | Version: | 2 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Security and Acceleration Server 2006 |
| Definition Synopsis: | |||
| Referenced By: | |||
| oval:org.mitre.oval:def:5649 oval:org.mitre.oval:def:5649 oval:org.mitre.oval:def:5649 | |||
