Vulnerabilities (CVE)

Filtered by vendor Mandiant Subscribe
Filtered by product First Response
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-6477 1 Mandiant 1 First Response 2024-02-04 2.4 LOW N/A
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
CVE-2006-6476 1 Mandiant 1 First Response 2024-02-04 2.4 LOW N/A
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and when the agent is bound to 0.0.0.0 (all interfaces), opens sockets in non-exclusive mode, which allows local users to hijack the socket, and capture data or cause a denial of service (loss of daemon operation).
CVE-2006-6475 1 Mandiant 1 First Response 2024-02-04 7.1 HIGH N/A
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode with SSL enabled, allows remote attackers to cause a denial of service (refused connections) via malformed requests, which results in a mishandled exception.