Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
[The ManageOwnage Series, part VI]: 0day database info and superuser credential disclosure in EventLog Analyser
Nov 05 2014 09:01PM
Pedro Ribeiro (pedrib gmail com)
This is the 6th part of the ManageOwnage series. For previous parts see .
This time we have two 0 day vulns (CVE-2014-6038 and 6039) that can be
abused to dump information from the database and obtain the superuser
credentials for Windows and AS/400 hosts which are managed by EventLog
[ more ]
Copyright 2010, SecurityFocus