PT-2015-3784 · Toshiba · Toshiba 4690 Operating System
David Odell
·
Published
2015-12-31
·
Updated
2015-12-31
·
CVE-2014-4876
CVSS v2.0
4.3
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Toshiba 4690 Operating System version 6 Release 3
Description
The issue allows remote attackers to read potentially sensitive system environment variables by sending a crafted request to the TCP port 54138, due to the improper restriction of the ADXSITCF logical name.
Recommendations
For Toshiba 4690 Operating System version 6 Release 3, restrict access to the ADXSITCF logical name to prevent unauthorized access.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Toshiba 4690 Operating System