Lucene search
MitreCVE-2009-2429HistoryJul 10, 2009 - 5:30 p.m.
CVE-2009-2429
2009-07-1017:30:00
CWE-255
mitre
web.nvd.nist.gov
29
cve-2009-2429
smartfilter
web gateway
security
credentials
cleartext
admin_backup.xml
permissions
local users
privileges
nvd
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in admin_backup.xml files and uses insecure permissions for these files, which allows local users to gain privileges. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
mcafeesmartfilterMatch4.2.1.00
| Vendor | Product | Version | CPE |
|---|---|---|---|
| mcafee | smartfilter | 4.2.1.00 | cpe:2.3:a:mcafee:smartfilter:4.2.1.00:*:*:*:*:*:*:* |
Related
prion
prion
Information disclosure
2009-07-10 17:30:00
nvd
nvd
CVE-2009-2429
2009-07-10 17:30:00
cvelist
cvelist
CVE-2009-2429
2009-07-10 17:00:00
seebug
seebug
McAfee SmartFilter信息泄漏漏洞
2009-07-23 00:00:00
CVSS2
4.6
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.5
Confidence
Low
EPSS
0
Percentile
5.1%
Related for CVE-2009-2429