Computer Security
[EN] securityvulns.ru no-pyccku


EMC RSA Web Threat Detection security vulnerabilities
Published:12.10.2015
Source:
SecurityVulns ID:14729
Type:remote
Threat Level:
5/10
Description:Information disclosure, privilege escalation.
Affected:EMC : RSA Web Threat Detection 5.1
CVE:CVE-2015-4548 (EMC RSA Web Threat Detection before 5.1 SP1 allows local users to obtain root privileges by leveraging access to a service account and writing commands to a service configuration file.)
 CVE-2015-4547 (EMC RSA Web Threat Detection before 5.1 SP1 stores a cleartext AnnoDB password in a configuration file, which allows remote authenticated users to obtain sensitive information by reading this file.)
Original documentdocumentEMC, ESA-2015-152: RSA Web Threat Detection Multiple Vulnerabilities (12.10.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod