McAfee ESM/ESMLM/ESMREC身份验证绕过漏洞(CVE-2015-8024)
McAfee ESM/ESMLM/ESMREC身份验证绕过漏洞(CVE-2015-8024)
McAfee ESM/ESMLM/ESMREC身份验证绕过漏洞(CVE-2015-8024)
发布日期:2015-08-20
更新日期:2015-12-03
受影响系统:
McAfee Enterprise Security Manager 9.5.x-9.5.0MR8
McAfee Enterprise Security Manager 9.4.x-9.4.2MR9
McAfee Enterprise Security Manager 9.3.x-9.3.2MR19
描述:
CVE(CAN) ID: CVE-2015-8024
McAfee ESM提供智能的安全、信息及日志管理功能。
McAfee Enterprise Security Manager (ESM), Enterprise Security Manager/Log Manager (ESMLM), Enterprise Security Manager/Receiver (ESMREC) 9.3.x-9.3.2MR19, 9.4.x-9.4.2MR9, 9.5.x-9.5.0MR8,配置为使用动态目录或LDAP身份验证源时,远程攻击者以"NGCP|NGCP|NGCP;"用户名及任意密码登录,即可绕过身份验证。
<*来源:Claudio Cinquino
链接:https://kc.mcafee.com/corporate/index?page=content&id=SB10137
*>
建议:
厂商补丁:
McAfee
------
McAfee已经为此发布了一个安全公告(SB10137)以及相应补丁:
SB10137:Security Bulletin: SIEM ESM, ESMREC, and ESMLM updates fix authentication bypass vulnerability
链接:https://kc.mcafee.com/corporate/index?page=content&id=SB10137
补丁下载:
https://kc.mcafee.com/corporate/index?page=content&id=KB56057
http://www.mcafee.com/us/downloads/downloads.aspx
本文永久更新链接地址:
评论暂时关闭