Page 2 of 11 results (0.003 seconds)
CVSS: 9.8EPSS: 87%CPEs: 1EXPL: 2
CVSS: 9.8EPSS: 87%CPEs: 1EXPL: 2CVE-2014-4872 – Numara / BMC Track-It! FileStorageService - Arbitrary File Upload
https://notcve.org/view.php?id=CVE-2014-4872
08 Oct 2014 — BMC Track-It! 11.3.0.355 does not require authentication on TCP port 9010, which allows remote attackers to upload arbitrary files, execute arbitrary code, or obtain sensitive credential and configuration information via a .NET Remoting request to (1) FileStorageService or (2) ConfigurationService. BMC Track-It! 11.3.0.355 no requiere la autenticación en el puerto TCP 9010, lo que permite a atacantes remotos subir ficheros arbitrarios, ejecutar código arbitrario u obtener información sensible sobre credenci... • https://www.exploit-db.com/exploits/35032 • CWE-306: Missing Authentication for Critical Function •