PT-2014-8928 · Entrypass · Entrypass N5200 Active Network Control Panel

Publicado

2014-12-07

Atualizado

2018-10-09

CVE-2014-9303

CVSS v2.0

7.8

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:N/A:N

Name of the Vulnerable Software and Affected Versions EntryPass N5200 Active Network Control Panel (affected versions not specified)

Description The issue allows remote attackers to read device memory and obtain the administrator username and password via a URL starting with an ASCII character o through z or A through D.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2014-9303

Produtos afetados

Entrypass N5200 Active Network Control Panel

PT-2014-8928 · Entrypass · Entrypass N5200 Active Network Control Panel

CVE-2014-9303

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5