S2 NetBox Multiple Information Disclosure Vulnerabilities

S2 NetBox is prone to multiple remote information-disclosure issues because it fails to restrict access to sensitive information through authentication.
A remote attacker can exploit these issues to obtain sensitive information, possibly aiding in further attacks.

S2 NetBox 2.5, 3.3, and 4.0 are vulnerable. Linear eMerge and Sonitrol eAccess are based on NetBox; unknown versions of these applications may also be affected.


 

Privacy Statement
Copyright 2010, SecurityFocus