Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Multiple vulnerabilities found in BMC Track-It! help desk software

Multiple vulnerabilities found in BMC Track-It! help desk software

2014/10/10

Securityweek - (International) Researchers with the Computer Emergency Response Team Coordination Center at Carnegie Mellon University (CERT/CC) and Agile Information Security found that Track-It! version 11.3.0.355, the IT helpdesk solution created by BMC Software, contains three vulnerabilities related to permissions, privileges, and access control, missing authentication for critical function, and an exploitation using blind SQL injection. The company is working on addressing the issues.

Source: http://www.securityweek.com/multiple-vulnerabilities-found-bmc-track-it-help-desk-software

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:22:03