[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":4,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":11,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":17,"vulnerability-22271":24},[],["Island",5],{"key":6,"params":7,"result":9},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":8},"{}",{"head":10},{},["Island",12],{"key":13,"params":14,"result":15},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":8},{"head":16},{},["Island",18],{"key":19,"params":20,"result":22},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":21},"{\"text-color\":\"gray\"}",{"head":23},{},{"id":25,"detectable_with":26,"vuln_details":33,"vuln_id":56,"name":57,"published":58,"updated":34},22271,{"tool":27,"engine":30},{"id":28,"name":29},1,"Network Scanner",{"id":31,"name":32},3,"OpenVAS",{"id":25,"codename":34,"description":34,"severity":34,"risk_description":35,"public_description":36,"public_recommendation":37,"recommendation":34,"references":38,"cvssv3":34,"epss_score":47,"epss_percentile":48,"cve":49,"in_cisa_catalog":55,"date":34,"software_type":34,"vendor":34,"product":34,"ptt_exploit_capabilities":34},null,"The Visionsoft Audit on Demand service may be vulnerable to multiple issues which can be exploited remotely without authentication: - Heap overflow via LOG command (CVE-2007-4148) - Multiple arbitrary file overwrites via LOG and SETTINGSFILE command (CVE-2007-4149) - Denial of service via UNINSTALL command (CVE-2007-4149) Additionally, the underlying protocol for authentication has been reported as being vulnerable to replay attacks (CVE-2007-4152) and the settings file is typically installed with inappropriate permissions (CVE-2007-4150).","Visionsoft Audit is prone to multiple vulnerabilities.","We recommend that Visionsoft are contacted for a patch. To mitigate this flaw filter inbound traffic to 5957/tcp to only known management hosts.",[39,40,41,42,43,44,45,46],"http://www.portcullis-security.com/197.php","http://www.portcullis-security.com/198.php","http://www.portcullis-security.com/199.php","http://www.portcullis-security.com/203.php","http://www.portcullis-security.com/204.php","http://www.portcullis-security.com/205.php","http://www.portcullis-security.com/206.php","http://www.portcullis-security.com/207.php",0.06554,0.91103,[50,51,52,53,54],"CVE-2007-4148","CVE-2007-4149","CVE-2007-4150","CVE-2007-4151","CVE-2007-4152",false,"NETSCAN-OPENVAS-1.3.6.1.4.1.25623.1.0.100951","Visionsoft Audit Multiple Vulnerabilities","2018-01-02T00:00:00Z"]