BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
[The ManageOwnage Series, part VI]: 0day database info and superuser credential disclosure in EventLog Analyser Nov 05 2014 09:01PM
Pedro Ribeiro (pedrib gmail com)
Hi,

This is the 6th part of the ManageOwnage series. For previous parts see [1].

This time we have two 0 day vulns (CVE-2014-6038 and 6039) that can be
abused to dump information from the database and obtain the superuser
credentials for Windows and AS/400 hosts which are managed by EventLog
Analy...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus