Lucene search
PRIOn knowledge basePRION:CVE-2017-12477HistoryAug 07, 2017 - 3:29 p.m.
Authentication flaw
2017-08-0715:29:00
PRIOn knowledge base
www.prio-n.com
1
It was discovered that the bpserverd proprietary protocol in Unitrends Backup (UB) before 10.0.0, as invoked through xinetd, has an issue in which its authentication can be bypassed. A remote attacker could use this issue to execute arbitrary commands with root privilege on the target system.
| CPE | Name | Operator | Version |
|---|---|---|---|
| unitrends_backup | lt | 10.0 |
Related
packetstorm
packetstorm
Unitrends UEB 9.1 bpserverd Remote Command Execution
2017-10-05 00:00:00
Unitrends UEB bpserverd Authentication Bypass / Remote Command Execution
2017-10-21 00:00:00
zdt
zdt
Unitrends UEB 9.1 - Unitrends bpserverd Remote Command Execution Exploit
2017-10-06 00:00:00
exploitpack
exploitpack
Unitrends UEB 9.1 - Unitrends bpserverd Remote Command Execution
2017-08-08 00:00:00
metasploit
metasploit
Unitrends UEB bpserverd authentication bypass RCE
2017-10-06 15:38:33
openvas
openvas
Unitrends < 10.0.0 RCE Vulnerability - Active Check
2017-10-23 00:00:00
Unitrends < 10.0.0 Multiple Vulnerabilities
2017-10-23 00:00:00
cve
cve
CVE-2017-12477
2017-08-07 15:29:00
cvelist
cvelist
CVE-2017-12477
2017-08-07 15:00:00
nvd
nvd
CVE-2017-12477
2017-08-07 15:29:00
exploitdb
exploitdb