BMC Track-It! 11.3 allows remote attackers to gain privileges and execute arbitrary code by creating an account whose name matches that of a local system account, then performing a password reset.
References
Link | Resource |
---|---|
http://support.numarasoftware.com/support/articles.asp?how=%20AND%20&mode=detail&kcriteria=7508&ID=7654 | Broken Link Vendor Advisory |
http://www.zerodayinitiative.com/advisories/ZDI-14-419/ | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2014-12-12T11:00:00
Updated: 2014-12-12T03:57:00
Reserved: 2014-10-12T00:00:00
Link: CVE-2014-8270
JSON object: View
NVD Information
Status : Analyzed
Published: 2014-12-12T11:59:05.657
Modified: 2023-08-02T19:00:29.757
Link: CVE-2014-8270
JSON object: View
Redhat Information
No data.
CWE