2 matches found
CVE-2017-7279
An unprivileged user of the Unitrends Enterprise Backup before 9.0.0 web server can escalate to root privileges by modifying the "token" cookie issued at login...
CVE-2017-7279
CVE-2017-7279 affects Unitrends Enterprise Backup before 9.0.0. An unprivileged user can escalate to root by modifying the login session cookie named “token” on the web server. Root cause: inadequate protection/verification of the authentication token cookie. Impact: full root privileges on the a...