CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-2606

The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages, which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567, as demonstrated by a replay attack.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 75.1%

CVSS Severity

CVSS v2 Score 5.0

References

http://www.kb.cert.org/vuls/id/709939
http://www.kb.cert.org/vuls/id/MAPG-8TJKAF
https://na3.salesforce.com/sfc/#version?id=06850000000JDx3
http://www.kb.cert.org/vuls/id/709939
http://www.kb.cert.org/vuls/id/MAPG-8TJKAF
https://na3.salesforce.com/sfc/#version?id=06850000000JDx3

Products affected by CVE-2012-2606

Bradfordnetworks » Network Sentry Appliance Software » Version: 5.3

cpe:2.3:a:bradfordnetworks:network_sentry_appliance_software:5.3
Bradfordnetworks » Network Sentry Appliance » Version: ns500rx

cpe:2.3:h:bradfordnetworks:network_sentry_appliance:ns500rx
Bradfordnetworks » Network Sentry Appliance » Version: ns500x

cpe:2.3:h:bradfordnetworks:network_sentry_appliance:ns500x

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2606

Products

Pricing

Contact Us