Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:62001
HistoryMar 31, 2014 - 12:00 a.m.

Symantec LiveUpdate Administrator未授权访问漏洞

2014-03-3100:00:00
Root
www.seebug.org
8

0.861 High

EPSS

Percentile

98.3%

JSON

Bugtraq ID:66399
CVE ID:CVE-2014-1644

Symantec LiveUpdate Administrator是一款Symantec产品升级管理程序。

Symantec LiveUpdate Administrator管理GUI对登录/密码功能提供不正确的保护,允许攻击者在知道目标用户email地址的情况下,利用重置密码功能重置用户密码,未授权进行访问。
0
Symantec LiveUpdate Administrator 2.x
Symantec LiveUpdate Administrator 2.3.2.110已经修复该漏洞,建议用户下载更新:
http://www.symantec.com/business/support/index?page=content&id=TECH134809

Related

checkpoint_advisories 1
cve 1
prion 1
nessus 1
securityvulns 2
openvas 1
symantec 1
checkpoint_advisories
checkpoint_advisories
Symantec LiveUpdate Administrator Security Bypass (CVE-2014-1644)
2014-04-13 00:00:00
cve
cve
CVE-2014-1644
2014-03-29 01:55:00
prion
prion
Default credentials
2014-03-29 01:55:00
nessus
nessus
Symantec LiveUpdate Administrator < 2.3.2.110 Multiple Vulnerabilities (SYM14-005)
2014-03-31 00:00:00
securityvulns
securityvulns
SEC Consult SA-20140328-0 :: Multiple vulnerabilities in Symantec LiveUpdate Administrator
2014-03-31 00:00:00
Symantec LiveUpdate Administrator security vulnerabilities
2014-03-31 00:00:00
openvas
openvas
Symantec LiveUpdate Administrator Multiple Vulnerabilities
2014-04-03 00:00:00
symantec
symantec
Symantec LiveUpdate Administrator Unauthenticated/Unauthorized Account Access Modification and SQL i
2014-03-27 08:00:00

0.861 High

EPSS

Percentile

98.3%

JSON
Related for SSV:62001
checkpoint_advisories1cve1prion1nessus1securityvulns2openvas1symantec1