Описание
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
Ссылки
- PatchVendor Advisory
- Patch
- Patch
- Patch
- PatchVendor Advisory
- Patch
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1Версия до 1.1 (включая)
cpe:2.3:a:mandiant:first_response:*:*:*:*:*:*:*:*
EPSS
Процентиль: 26%
0.00091
Низкий
2.4 Low
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
EPSS
Процентиль: 26%
0.00091
Низкий
2.4 Low
CVSS2
Дефекты
NVD-CWE-Other