Lucene search
CertccCVELIST:CVE-2016-1543HistoryJun 13, 2016 - 2:00 p.m.
CVE-2016-1543
2016-06-1314:00:00
certcc
www.cve.org
1
0.339 Low
EPSS
Percentile
97.1%
The RPC API in the RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and reset arbitrary user passwords by sending an action packet to xmlrpc after an authorization failure.
References
packetstormsecurity.com/files/136462/BMC-Server-Automation-BSA-RSCD-Agent-Unauthorized-Password-Reset.html
www.securityfocus.com/archive/1/537910/100/0/threaded
selfservice.bmc.com/casemgmt/sc_KnowledgeArticle?sfdcid=kA214000000dBpnCAE&type=Solution
www.exploit-db.com/exploits/43902/
www.exploit-db.com/exploits/43939/
www.insinuator.net/2016/03/bmc-bladelogic-cve-2016-1542-and-cve-2016-1543/
Related
cve
cve
CVE-2016-1543
2016-06-13 14:59:01
nvd
nvd
CVE-2016-1543
2016-06-13 14:59:01
prion
prion
Authorization
2016-06-13 14:59:00
packetstorm
packetstorm
BMC BladeLogic 8.3.00.64 Remote Command Execution
2018-01-26 00:00:00
BMC Server Automation RSCD Agent NSH Remote Command Execution
2018-01-31 00:00:00
exploitpack
exploitpack
BMC BladeLogic 8.3.00.64 - Remote Command Execution
2018-01-26 00:00:00
zdt
zdt
BMC Server Automation RSCD Agent - NSH Remote Command Execution Exploit
2018-02-01 00:00:00
seebug
seebug
BMC BladeLogic 8.3.00.64 - Remote Command Execution
2018-02-01 00:00:00
metasploit
metasploit
BMC Server Automation RSCD Agent NSH Remote Command Execution
2018-01-14 01:12:55
nessus
nessus
BMC Server Automation RSCD Agent ACL Bypass
2016-05-10 00:00:00
exploitdb
exploitdb
BMC Server Automation RSCD Agent - NSH Remote Command Execution (Metasploit)
2018-02-01 00:00:00
BMC BladeLogic 8.3.00.64 - Remote Command Execution
2018-01-26 00:00:00