메뉴 건너뛰기

GREATUSER

cve

CVE-2017-17406

관리자 2018.01.25 04:00 조회 수 : 13

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Netgain Enterprise Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists within an exposed RMI registry, which listens on TCP ports 1800 and 1850 by default. The issue results from the lack of proper validation of user-supplied data, which can result in deserialization of untrusted data. An attacker can leverage this vulnerability to execute arbitrary code under the context of the current process. Was ZDI-CAN-4753.


원문출처 : https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-17406
번호 제목 글쓴이 날짜 조회 수
527 CVE-2017-12096 관리자 2017.11.09 38
526 CVE-2017-0147 관리자 2017.03.18 38
525 CVE-2017-2865 관리자 2017.11.09 37
524 CVE-2016-0025 관리자 2016.06.17 37
523 CVE-2017-6331 관리자 2017.11.09 36
522 CVE-2017-12719 관리자 2017.11.09 36
521 CVE-2017-16597 관리자 2018.01.25 34
520 CVE-2017-12094 관리자 2017.11.09 34
519 CVE-2017-16609 관리자 2018.01.25 33
518 CVE-2017-16591 관리자 2018.01.25 33
517 CVE-2017-11398 관리자 2018.01.25 33
516 CVE-2017-14029 관리자 2017.11.09 33
515 CVE-2016-5345 관리자 2018.01.25 31
514 CVE-2017-14031 관리자 2017.11.09 31
513 CVE-2017-16561 관리자 2017.11.09 30
위로