3 matches found
CVE-2006-6477
CVE-2006-6477 concerns Mandiant First Response (MFR) prior to 1.1.1. The issue arises when the FRAgent daemon runs with HTTP (and also in SSL mode as per Symantec advisory) and binds non-exclusively to a socket, enabling a local attacker to hijack the agent and conduct a man-in-the-middle attack ...
SYMSA-2006-013: Multiple Vulnerabilities in Mandiant First Response
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Symantec Vulnerability Research http://www.symantec.com/research Security Advisory Advisory ID: SYMSA-2006-013 Advisory Title: Multiple Vulnerabilities in Mandiant First Response Author: Brian Reilly / [email protected] Release Date: 18-12-2006...
KLA10160 Multiple vulnerabilities in First Response
Multiple serious vulnerabilities have been found in First Response. Malicious users can exploit these vulnerabilities to cause denial of service or hijack user packets. Below is a complete list of vulnerabilities 1. Non-exclusive socket mode can be exploited locally; 2. Vectors related to FRAgent...