CVE-2017-6356
https://notcve.org/view.php?id=CVE-2017-6356
Palo Alto Networks Terminal Services (aka TS) Agent 6.0, 7.0, and 8.0 before 8.0.1 uses weak permissions for unspecified resources, which allows attackers to obtain sensitive session information via unknown vectors. Palo Alto Networks Terminal Services (también conocido como TS) Agent 6.0, 7.0 y 8.0 en versiones anteriores a 8.0.1 utiliza permisos débiles para recursos no especificados lo que permite a los atacantes obtener información sensible de sesión a través de vectores desconocidos. • http://www.securityfocus.com/bid/96925 https://security.paloaltonetworks.com/CVE-2017-6356 • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVE-2017-5328
https://notcve.org/view.php?id=CVE-2017-5328
Palo Alto Networks Terminal Services Agent before 7.0.7 allows attackers to spoof arbitrary users via unspecified vectors. Palo Alto Networks Terminal Services Agent en versiones anteriores a 7.0.7 permite a un atacantes suplantar usuarios arbitrarios a través de vectores no especificados. • http://www.securityfocus.com/bid/95823 https://security.paloaltonetworks.com/CVE-2017-5328 •
CVE-2017-5329 – Palo Alto Networks Terminal Services Agent 7.0.3-13 - Integer Overflow
https://notcve.org/view.php?id=CVE-2017-5329
Palo Alto Networks Terminal Services Agent before 7.0.7 allows local users to gain privileges via vectors that trigger an out-of-bounds write operation. Palo Alto Networks Terminal Services Agent en versiones anteriores a 7.0.7 permite a usuarios locales obtener privilegios a través de vectores que desencadenan una operación de escritura fuera de límites. Palo Alto Networks Terminal Services Agent version 7.0.3-13 suffers from an integer overflow vulnerability. • https://www.exploit-db.com/exploits/41176 http://www.securityfocus.com/bid/95818 https://security.paloaltonetworks.com/CVE-2017-5329 • CWE-787: Out-of-bounds Write •