5 matches found
CVE-2012-2626
cgi-bin/admin.cgi in the web console in Plixer Scrutinizer aka Dell SonicWALL Scrutinizer before 9.5.0 does not require token authentication, which allows remote attackers to add administrative accounts via a userprefs action...
Plixer Scrutinizer NetFlow and sFlow Analyzer HTTP Authentication Bypass (CVE-2012-2626)
An authentication bypass vulnerability has been reported in Plixer Scrutinizer NetFlow and sFlow Analyzer...
Plixer Scrutinizer NetFlow and sFlow Analyzer HTTP Authentication Bypass
This will add an administrative account to Scrutinizer NetFlow and sFlow Analyzer without any authentication. Versions such as 9.0.1 or older are affected. This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class...
CVE-2012-2626
CVE-2012-2626 affects Plixer Scrutinizer NetFlow and sFlow Analyzer prior to 9.5.0. The cgi-bin/admin.cgi web console does not require token authentication, allowing remote attackers to add administrative accounts via a userprefs action. Public sources and advisories reference this as an authenti...
CVE-2012-2626
creationtimestamp| type| source ---|---|--- 2012-07-30 00:00:00+00:00| confirmed| https://www.exploit-db.com/exploits/37549 2018-05-29 15:50:33+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/admin/http/scrutinizeradduser.rb 2025-02-06 03:13:40+00:00| see...