3 matches found
Deserialization of untrusted data
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within an exposed RMI registry, which listens on TCP ports 1800 and 1850 by defaul...
CVE-2017-17406
Netgain Enterprise Manager is affected by an insecure deserialization vulnerability in its RMI Registry. The issue arises from improper validation of user-supplied data, allowing remote code execution with no authentication through the exposed RMI service listening on TCP ports 1800 and 1850. Thi...
CVE-2017-17406
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within an exposed RMI registry, which listens on TCP ports 1800 and 1850 by defaul...