CVE-2009-2429

Currently unrated

Key Information:

Vendor: Mcafee
Status: Smartfilter
Vendor: CVE Published:; 10 July 2009

Summary

SmartFilter Web Gateway Security 4.2.1.00 stores user credentials in cleartext in admin_backup.xml files and uses insecure permissions for these files, which allows local users to gain privileges. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/49338

vdb-entryx_refsource_XF

http://archives.neohapsis.com/archives/fulldisclosure/200...

mailing-listx_refsource_FULLDISC

http://secunia.com/advisories/34390

third-party-advisoryx_refsource_SECUNIA

Timeline

Vulnerability published
Jul 10, 2009
Vulnerability Reserved
Jul 10, 2009