PT-2017-7520 · Intel Security Mcafee · Intel Security Mcafee Vulnerability Manager

Publicado

2017-03-14

Atualizado

2017-03-22

CVE-2015-8989

CVSS v2.0

4.0

Média

Vetor

AV:N/AC:L/Au:S/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Intel Security McAfee Vulnerability Manager (MVM) versions 7.5.8 and earlier

Description The issue concerns an unsalted password vulnerability in the Enterprise Manager component, which allows attackers to more easily decrypt user passwords via brute force attacks against the database.

Recommendations For versions 7.5.8 and earlier, update to a version that includes a fix for the unsalted password vulnerability to prevent brute force attacks against the database.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-310

Identificadores relacionados

CVE-2015-8989

Produtos afetados

Intel Security Mcafee Vulnerability Manager

PT-2017-7520 · Intel Security Mcafee · Intel Security Mcafee Vulnerability Manager

CVE-2015-8989

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 2