RSS   Vulnerabilities for 'Adonis'   RSS

2007-08-17
 
CVE-2007-4390

CWE-264
 

 
The Command Line Interface (CLI), aka Adonis Administration Console, on the BlueCat Networks Adonis DNS/DHCP appliance 5.0.2.8 allows local admin users to gain root privileges on the underlying operating system via shell metacharacters in a command.

 
2007-08-08
 
CVE-2007-4226

CWE-Other
 

 
Directory traversal vulnerability in the BlueCat Networks Proteus IPAM appliance 2.0.2.0 (Adonis DNS/DHCP appliance 5.0.2.8) allows remote authenticated administrators, with certain TFTP privileges, to create and overwrite arbitrary files via a .. (dot dot) in a pathname. NOTE: this can be leveraged for administrative access by overwriting /etc/shadow.

 


Copyright 2024, cxsecurity.com

 

Back to Top