CVE-2016-2950 (bigfix_remote_control)
SQL injection vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
[월:] 2016년 11월
CVE-2016-2950
CVE-2016-2950
SQL injection vulnerability in IBM BigFix Remote Control before 9.1.3 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Source: CVE-2016-2950
CVE-2016-2949 (bigfix_remote_control)
CVE-2016-2949 (bigfix_remote_control)
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by reading cached web pages from a different user’s session.
CVE-2016-2949
CVE-2016-2949
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by reading cached web pages from a different user’s session.
Source: CVE-2016-2949
CVE-2016-2948 (bigfix_remote_control)
CVE-2016-2948 (bigfix_remote_control)
IBM BigFix Remote Control before 9.1.3 allows local users to discover hardcoded credentials via unspecified vectors.
CVE-2016-2948
CVE-2016-2948
IBM BigFix Remote Control before 9.1.3 allows local users to discover hardcoded credentials via unspecified vectors.
Source: CVE-2016-2948
CVE-2016-2944 (bigfix_remote_control)
CVE-2016-2944 (bigfix_remote_control)
IBM BigFix Remote Control before 9.1.3 does not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.
CVE-2016-2944
CVE-2016-2944
IBM BigFix Remote Control before 9.1.3 does not properly restrict failed login attempts, which makes it easier for remote attackers to obtain access via a brute-force approach.
Source: CVE-2016-2944
CVE-2016-2943 (bigfix_remote_control)
CVE-2016-2943 (bigfix_remote_control)
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by leveraging unspecified privileges to read a log file.
CVE-2016-2943
CVE-2016-2943
IBM BigFix Remote Control before 9.1.3 allows local users to obtain sensitive information by leveraging unspecified privileges to read a log file.
Source: CVE-2016-2943