← voltar
CVE-2014-3006

CVE-2014-3006

EPSS 1.3%
Sitepark Information Enterprise Server (IES) 2.9 before 2.9.6, when upgraded from an earlier version, does not properly restrict access, which allows remote attackers to change the manager account password and obtain sensitive information via a request to install/.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://seclists.org/fulldisclosure/2014/Apr/317https://www.lsexperts.de/advisories/lse-2014-04-10.txthttp://www.securityfocus.com/archive/1/531986/100/0/threadedhttp://www.securityfocus.com/bid/67165