Описание
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-6477
- http://secunia.com/advisories/23393
- http://securityreason.com/securityalert/2052
- http://securitytracker.com/id?1017394
- http://www.mandiant.com/firstresponse.htm
- http://www.securityfocus.com/archive/1/454712/100/0/threaded
- http://www.securityfocus.com/bid/21548
- http://www.symantec.com/enterprise/research/SYMSA-2006-013.txt
- http://www.vupen.com/english/advisories/2006/5061
EPSS
CVE ID
Связанные уязвимости
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
EPSS