8 matches found
CVE-2016-4322
BMC BladeLogic Server Automation BSA before 8.7 Patch 3 allows remote attackers to bypass authentication and consequently read arbitrary files or possibly have unspecified other impact by leveraging a "logic flaw" in the authentication process...
CVE-2016-4322
CVE-2016-4322 affects BMC BladeLogic Server Automation (BSA) prior to 8.7 Patch 3. The flaw is in the authentication logic, allowing remote attackers to bypass authentication and read arbitrary files or cause other unspecified impact. The vulnerability is exploitable remotely with no authenticati...
BMC BladeLogic Server Automation Information Disclosure Vulnerability
BMC BladeLogic Server Automation i.e. BSA is a suite of solutions for automated server management, control and configuration from BMC Software, Inc. An information disclosure vulnerability exists in BMC BladeLogic Server Automation versions prior to 8.8. A remote attacker could exploit this...
CVE-2016-1543
The RPC API in the RSCD agent in BMC BladeLogic Server Automation BSA 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and reset arbitrary user passwords by sending an action packet to xmlrpc after an authorization failure...
CVE-2016-1542
The RPC API in RSCD agent in BMC BladeLogic Server Automation BSA 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and enumerate users by sending an action packet to xmlrpc after an authorization failure...
CVE-2016-1542
CVE-2016-1542/1543 affect the BMC BladeLogic Server Automation RSCD agent RPC/XMLRPC interface (Linux/UNIX) across 8.2–8.7. The flaws enable remote bypass of authorization and user-related abuse: CVE-2016-1542 allows user enumeration after an auth failure; CVE-2016-1543 permits bypass of authoriz...
BMC Software BladeLogic Server Automation Suite RSCD Agent Information Disclosure Vulnerability
BMC Software BladeLogic Server Automation Suite is a solution for managing the lifecycle of servers and applications from BMC Software, USA. An information disclosure vulnerability exists in the RSCD Agent of the BMC Software BladeLogic Server Automation Suite for Linux and Unix platforms. A remo...
BMC Software BladeLogic Server Automation Suite RSCD Agent Password Reset Vulnerability
BMC Software BladeLogic Server Automation Suite is a solution for managing the lifecycle of servers and applications from BMC Software, USA. A password reset vulnerability exists in the RSCD Agent of the BMC Software BladeLogic Server Automation Suite for Linux and Unix platforms. A remote attack...