RSS   Vulnerabilities for 'Thin-client management tool'   RSS

2010-08-25
 
CVE-2010-3122

CWE-255
 

 
The DevonIT thin-client management tool relies on a shared secret for authentication but transmits the secret in cleartext, which makes it easier for remote attackers to discover the secret value, and consequently obtain administrative control over client machines, by sniffing the network.

 
 
CVE-2010-3121

CWE-119
 

 
Buffer overflow in tm-console-bin in the DevonIT thin-client management tool might allow remote attackers to execute arbitrary code via unspecified vectors.

 


Copyright 2024, cxsecurity.com

 

Back to Top