Programi Bilanc Build 007 Release 014 31.01.2020 supplies a .exe file containing several hardcoded credentials to different servers that allow remote attackers to gain access to the complete infrastructure including the website, update server, and external issue tracking tools.
References
Link | Resource |
---|---|
http://seclists.org/fulldisclosure/2020/Dec/38 | Mailing List Third Party Advisory |
https://packetstormsecurity.com/files/160626/Programi-Bilanc-Build-007-Release-014-31.01.2020-Hardcoded-Credentials.html | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-12-21T21:07:03
Updated: 2020-12-21T21:07:03
Reserved: 2020-02-14T00:00:00
Link: CVE-2020-8995
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-12-21T22:15:13.643
Modified: 2020-12-22T18:19:52.540
Link: CVE-2020-8995
JSON object: View
Redhat Information
No data.
CWE