PT-2014-6394 · Adaptive Computing · Moab

John Fitzpatrick

Published

2014-10-08

Updated

2018-10-09

CVE-2014-5300

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Adaptive Computing Moab versions prior to 7.2.9 Adaptive Computing Moab version 8 before 8.0.0

Description The issue allows remote attackers to bypass the signature check, impersonate arbitrary users, and execute commands via a message without a signature.

Recommendations For versions prior to 7.2.9, update to version 7.2.9 or later. For version 8 before 8.0.0, update to version 8.0.0 or later.

Exploit

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2014-5300

Affected Products

Moab

PT-2014-6394 · Adaptive Computing · Moab

CVE-2014-5300

Weakness Enumeration

Related Identifiers

Affected Products

References · 8