← volver
CVE-2008-4315

CVE-2008-4315

EPSS 2.7%
tog-pegasus in OpenGroup Pegasus 2.7.0 on Red Hat Enterprise Linux (RHEL) 5, Fedora 9, and Fedora 10 does not log failed authentication attempts to the OpenPegasus CIM server, which makes it easier for remote attackers to avoid detection of password guessing attacks.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://osvdb.org/50278https://admin.fedoraproject.org/updates/tog-pegasus-2.7.0-7.fc9https://admin.fedoraproject.org/updates/tog-pegasus-2.7.1-3.fc10https://bugzilla.redhat.com/show_bug.cgi?id=472017http://secunia.com/advisories/32862https://exchange.xforce.ibmcloud.com/vulnerabilities/46830https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9431http://www.redhat.com/support/errata/RHSA-2008-1001.htmlhttp://www.securitytracker.com/id?1021281