RSS   Podatności dla 'Weblog expert'   RSS

2018-03-09
 
CVE-2018-7582

CWE-770
 

 
WebLog Expert Web Server Enterprise 9.4 allows Remote Denial Of Service (daemon crash) via a long HTTP Accept Header to TCP port 9991.

 
 
CVE-2018-7581

CWE-732
 

 
\ProgramData\WebLog Expert\WebServer\WebServer.cfg in WebLog Expert Web Server Enterprise 9.4 has weak permissions (BUILTIN\Users:(ID)C), which allows local users to set a cleartext password and login as admin.

 


Copyright 2024, cxsecurity.com

 

Back to Top