← back
CVE-2007-2590

CVE-2007-2590

EPSS 1.5%
Nokia Intellisync Mobile Suite 6.4.31.2, 6.6.0.107, and 6.6.2.2, possibly involving Novell Groupwise Mobile Server and Nokia Intellisync Wireless Email Express, allows remote attackers to obtain user names and other sensitive information via a direct request to (1) usrmgr/userList.asp or (2) usrmgr/userStatusList.asp.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://osvdb.org/34514http://secunia.com/advisories/25212http://securityreason.com/securityalert/2689http://www.sec-consult.com/289.htmlhttp://www.securityfocus.com/archive/1/468048/100/0/threadedhttp://www.vupen.com/english/advisories/2007/1727