RSS   Vulnerabilities for 'Thintune l'   RSS

2004-07-24
 
CVE-2004-2051

 

 
The Phoenix browser in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allows local users to read arbitrary files via a file:/// URL.

 
2004-12-31
 
CVE-2004-2050

 

 
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier allow local users to gain privileges by pressing CTRL-SHIFT-ALT-DEL and entering the "maertsJ" password, which is hard-coded into lshell.

 
 
CVE-2004-2049

 

 
eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access.

 
 
CVE-2004-2048

 

 
radmin in eSeSIX Thintune thin clients running firmware 2.4.38 and earlier starts a process port 25072 that can be accessed with a default "jstwo" password, which allows remote attackers to gain access.

 

 >>> Vendor: Esesix 8 Products
Thintune extreme
Thintune l
Thintune m
Thintune mobile
Thintune s
Thintune xm
Thintune xs
Thintune


Copyright 2024, cxsecurity.com

 

Back to Top