{"api_version":"1","generated_at":"2026-04-23T08:38:20+00:00","cve":"CVE-2007-6095","urls":{"html":"https://cve.report/CVE-2007-6095","api":"https://cve.report/api/cve/CVE-2007-6095.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2007-6095","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2007-6095"},"summary":{"title":"CVE-2007-6095","description":"The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might allow remote authenticated users to receive messages intended for other users.","state":"PUBLISHED","assigner":"mitre","published_at":"2007-11-22 00:46:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["CWE-200","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"4","severity":"","vector":"AV:N/AC:L/Au:S/C:P/I:N/A:N","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"}}],"references":[{"url":"http://secunia.com/advisories/27688","name":"http://secunia.com/advisories/27688","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"],"title":"Ingate Firewall and SIParator Multiple Vulnerabilities - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/26486","name":"http://www.securityfocus.com/bid/26486","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Ingate Firewall And SIParator Multiple Vulnerabilities","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://osvdb.org/42172","name":"http://osvdb.org/42172","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"","mime":"","httpstatus":"-1","archivestatus":"0"},{"url":"http://www.ingate.com/relnote-460.php","name":"http://www.ingate.com/relnote-460.php","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"Release notice for Ingate Firewall® 4.6.0 and Ingate SIParator® 4.6.0","mime":"text/html","httpstatus":"404","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2007-6095","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2007-6095","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2007","cve_id":"6095","vulnerable":"1","versionEndIncluding":"4.5.2","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"ingate","cpe5":"ingate_firewall","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2007","cve_id":"6095","vulnerable":"1","versionEndIncluding":"4.5.2","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"ingate","cpe5":"ingate_siparator","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T15:54:26.632Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"name":"42172","tags":["vdb-entry","x_refsource_OSVDB","x_transferred"],"url":"http://osvdb.org/42172"},{"name":"27688","tags":["third-party-advisory","x_refsource_SECUNIA","x_transferred"],"url":"http://secunia.com/advisories/27688"},{"name":"26486","tags":["vdb-entry","x_refsource_BID","x_transferred"],"url":"http://www.securityfocus.com/bid/26486"},{"tags":["x_refsource_CONFIRM","x_transferred"],"url":"http://www.ingate.com/relnote-460.php"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"datePublic":"2007-11-16T00:00:00.000Z","descriptions":[{"lang":"en","value":"The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might allow remote authenticated users to receive messages intended for other users."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2008-11-15T10:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"name":"42172","tags":["vdb-entry","x_refsource_OSVDB"],"url":"http://osvdb.org/42172"},{"name":"27688","tags":["third-party-advisory","x_refsource_SECUNIA"],"url":"http://secunia.com/advisories/27688"},{"name":"26486","tags":["vdb-entry","x_refsource_BID"],"url":"http://www.securityfocus.com/bid/26486"},{"tags":["x_refsource_CONFIRM"],"url":"http://www.ingate.com/relnote-460.php"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2007-6095","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might allow remote authenticated users to receive messages intended for other users."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"42172","refsource":"OSVDB","url":"http://osvdb.org/42172"},{"name":"27688","refsource":"SECUNIA","url":"http://secunia.com/advisories/27688"},{"name":"26486","refsource":"BID","url":"http://www.securityfocus.com/bid/26486"},{"name":"http://www.ingate.com/relnote-460.php","refsource":"CONFIRM","url":"http://www.ingate.com/relnote-460.php"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2007-6095","datePublished":"2007-11-22T00:00:00.000Z","dateReserved":"2007-11-21T00:00:00.000Z","dateUpdated":"2024-08-07T15:54:26.632Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2007-11-22 00:46:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["CWE-200","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:P/I:N/A:N","baseScore":4,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"PARTIAL","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"MEDIUM","exploitabilityScore":8,"impactScore":2.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:ingate:ingate_firewall:*:*:*:*:*:*:*:*","versionEndIncluding":"4.5.2","matchCriteriaId":"2FCD0134-18A5-4C85-B6D3-6E66A8983C43"},{"vulnerable":true,"criteria":"cpe:2.3:h:ingate:ingate_siparator:*:*:*:*:*:*:*:*","versionEndIncluding":"4.5.2","matchCriteriaId":"598B6EC9-AF61-4C65-AE23-FC8F42CE64B1"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2007","CveId":"6095","Ordinal":"1","Title":"CVE-2007-6095","CVE":"CVE-2007-6095","Year":"2007"},"notes":[{"CveYear":"2007","CveId":"6095","Ordinal":"1","NoteData":"The SIP component in Ingate Firewall before 4.6.0 and SIParator before 4.6.0, when Remote NAT Traversal is employed, does not properly perform user registration and message distribution, which might allow remote authenticated users to receive messages intended for other users.","Type":"Description","Title":"CVE-2007-6095"},{"CveYear":"2007","CveId":"6095","Ordinal":"2","NoteData":"2007-11-21","Type":"Other","Title":"Published"},{"CveYear":"2007","CveId":"6095","Ordinal":"3","NoteData":"2008-11-15","Type":"Other","Title":"Modified"}]}}}