CVSS: 10.0EPSS: 0%CPEs: 5EXPL: 2CVE-2010-2468
https://notcve.org/view.php?id=CVE-2010-2468
25 Jun 2010 — The S2 Security NetBox 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, uses a weak hash algorithm for storing the Administrator password, which makes it easier for context-dependent attackers to obtain privileged access by recovering the cleartext of this password. El S2 Security NetBox v2.x v3.x, como el usado en Linear eMerge 50 y 5000 y Sonitrol eAccess, usa un algoritmo hash débil para almacenar la contraseña de Administrador, lo que hace fácil a atacantes dependientes de... • http://blip.tv/file/3414004 • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 3%CPEs: 6EXPL: 2CVE-2010-2465
https://notcve.org/view.php?id=CVE-2010-2465
25 Jun 2010 — The S2 Security NetBox 2.5, 3.3, and 4.0, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, stores sensitive information under the web root with insufficient access control, which allows remote attackers to download node logs, photographs of persons, and backup files via unspecified HTTP requests. S2 Security NetBox, probablemente v2.x v3.x, comoel usado en Linear eMerge 50 y 5000 y Sonitrol eAccess, almacena información sensible bajo la raíz web con insuficiente control de acceso, lo que p... • http://blip.tv/file/3414004 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 9.1EPSS: 1%CPEs: 6EXPL: 3CVE-2010-2467
https://notcve.org/view.php?id=CVE-2010-2467
25 Jun 2010 — The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not require setting a password for the FTP server that stores database backups, which makes it easier for remote attackers to download backup files via unspecified FTP requests. S2 Security NetBox, possibly v.x y v3.x, como el usado en Linear eMerge 50 y 5000 y Sonitrol eAccess, no requiere configurar una clave para el servidor FTP que almacena backups de datos, lo que hace sencillo para ata... • http://blip.tv/file/3414004 • CWE-255: Credentials Management Errors •
CVSS: 7.5EPSS: 2%CPEs: 5EXPL: 2CVE-2010-2466
https://notcve.org/view.php?id=CVE-2010-2466
25 Jun 2010 — The S2 Security NetBox, possibly 2.x and 3.x, as used in the Linear eMerge 50 and 5000 and the Sonitrol eAccess, does not properly prevent downloading of database backups, which allows remote attackers to obtain sensitive information via requests for full_*.dar files with predictable filenames. S2 Security NetBox, probablemente v2.x v3.x, comoel usado en Linear eMerge 50 y 5000 y Sonitrol eAccess, no previene adecuadamente la descarga de datos backups, lo que permite a atacantes remotos obtener información ... • http://blip.tv/file/3414004 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2009-3734
https://notcve.org/view.php?id=CVE-2009-3734
05 Jan 2010 — Unspecified vulnerability in the management console in the S2 Security Linear eMerge Access Control System 2.5.x allows remote attackers to cause a denial of service (configuration reset) via a request to a crafted URI. Vulnerabilidad sin especificar en la consola de gestión en el S2 Security Linear eMerge Access Control System v2.5.x permite a atacantes remotos provocar una denegación de servicio (reinicio de la configuración) a través de una petición a una URI manipulada. • http://blip.tv/file/3414004 •