Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2429

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2009-2429
Last Modified 08 Jan 2010 12:00:00
Published 10 Jul 2009 01:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2009-2429

Summary

SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in admin_backup.xml files and uses insecure permissions for these files, which allows local users to gain privileges. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Systems

Application

  • Mcafee Smartfilter 4.2.1.00


References

XF - smartfilter-configtxt-info-disclosure(49338)

SECUNIA - 34390

FULLDISC - 20090319 Secure Computing (McAfee) Smart Filter possible issue


Last Updated: 27 May 2016 10:50:54