NotCVE - vendor:"Bmc" product:"Remedy Action Request System"

Page 2 of 7 results (0.005 seconds)

CVSS: 7.5EPSS: 0%CPEs: 4EXPL: 0

CVE-2016-2349

https://notcve.org/view.php?id=CVE-2016-2349

Remedy AR System Server in BMC Remedy 8.1 SP 2, 9.0, 9.0 SP 1, and 9.1 allows attackers to reset arbitrary passwords via a blank previous password. Remedy AR System Server en BMC Remedy 8.1 SP 2, 9.0, 9.0 SP 1 y 9.1 permite a atacantes reiniciar contraseñas arbitrarias a través de una contraseña en blanco previa. • http://www.securityfocus.com/bid/95075 http://www.securitytracker.com/id/1037529 https://bmcsites.force.com/casemgmt/sc_KnowledgeArticle?sfdcid=kA214000000l6kbCAA&type=Solution • CWE-640: Weak Password Recovery Mechanism for Forgotten Password •

CVSS: 5.0EPSS: 1%CPEs: 1EXPL: 0

CVE-2007-0310

https://notcve.org/view.php?id=CVE-2007-0310

BMC Remedy Action Request System 5.01.02 Patch 1267 generates different error messages for failed login attempts with a valid username than for those with an invalid username, which allows remote attackers to determine valid account names. BMC Remedy Action Request System 5.01.02 Patch 1267 genera diversos mensajes de error para las tentativas falladas de conexión con un username válido que para éstos con un username inválido, lo que permite que los atacantes remotos que determinen nombres de usuario válidos. • http://osvdb.org/31658 http://secunia.com/advisories/23775 http://securityreason.com/securityalert/2162 http://securitytracker.com/id?1017515 http://www.alighieri.org/advisories/advisory-remedy50102.txt http://www.securityfocus.com/archive/1/456949/100/0/threaded http://www.securityfocus.com/archive/1/457078/100/0/threaded http://www.securityfocus.com/bid/22066 http://www.vupen.com/english/advisories/2007/0204 https://exchange.xforce.ibmcloud.com/vulnerabilities/31527 •

1 2