Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges.
References
Configurations
Configuration 1 (hide)
|
History
20 Nov 2024, 23:38
Type | Values Removed | Values Added |
---|---|---|
References | () http://razor.bindview.com/publish/advisories/adv_FunkProxy.html - Patch, Vendor Advisory | |
References | () http://www.iss.net/security_center/static/8793.php - | |
References | () http://www.securityfocus.com/bid/4460 - |
Information
Published : 2002-04-22 04:00
Updated : 2024-11-20 23:38
NVD link : CVE-2002-0066
Mitre link : CVE-2002-0066
CVE.ORG link : CVE-2002-0066
JSON object : View
Products Affected
funk_software
- funk_software_proxy
bindview
- netrc
CWE