|
|
CVE Reference: CVE-2005-2554 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-2554 |
|
|
Description: The web server for Network Associates ePolicy Orchestrator Agent 3.5.0 (patch 3) uses insecure permissions for the "Common Framework\Db" folder, which allows local users to read arbitrary files by creating a subfolder in the EPO agent web root directory. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/21839 SAID Secunia Advisory: SA16410 OSVDB 18735 MISC http://reedarvin.thearvins.com/20050811-01.html FULLDISC http://lists.virus.org/full-disclosure-0508/msg00376.html CONFIRM http://knowledgemap.nai.com/KanisaSupportSite/search.do?cmd=displayKC&docType=kc&externalId=KBkb42216xml BID 14549 |
|
| Return to the previous page. |
