Back to search
CVE-2009-2344
Published: Jul 7, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor before 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an edit action to admin/user/user.cgi and unspecified other components.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
35658
third-party-advisory
x_refsource_SECUNIA
1022500
vdb-entry
x_refsource_SECTRACK
9074
exploit
x_refsource_EXPLOIT-DB
20090701 Sourcefire 3D Sensor and DC, privilege escalation vulnerability
mailing-list
x_refsource_BUGTRAQ
ADV-2009-1785
vdb-entry
x_refsource_VUPEN
35553
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now