Texas Instruments Fusion Digital Power Designer version 7.10.1 allows a local attacker to obtain sensitive information via the plaintext storage of credentials.
7d2282798e3247a2123a5993d7d6d2cb77a3755e9e0270c916b57856fbfaf0efReprise License Manager version 14.2 suffers from an authenticated remote binary execution vulnerability.
72c0ba7c2e28fd50df854171e433034523cc3f472cc55de6db9a3269eecd1bb8Reprise License Manager version 14.2 suffers from an authenticated buffer overflow vulnerability.
fcd9fa2c50f5da145a35d56b3b091875f7c9a4168dca6243e9b9de19a8c2fc85Reprise License Manager version 14.2 suffers from an unauthenticated session hijacking vulnerability via brute forcing. The vendor has contacted Packet Storm to note that in v15.1 they fixed this issue by updating the session cookie size to 40 bytes, from the previous 4 bytes on Windows and 8 bytes on Linux.
908696ef80c1b6e9be550123ff1923741a359a0f31aaf0e10ba48e8fb8ab37a2Reprise License Manager version 14.2 suffers from a missing authentication vulnerability that allows for password changing of any existing user. The vendor has contacted Packet Storm to note that version 15.1 has been released which includes a fix for this issue by requiring authentication to change a password.
79baa163dbede839bdb9c336503fd816ceecad6a454203e15d96d15ec3b68d0aReprise License Manager version 14.2 suffers from a user enumeration vulnerability. The vendor has contacted Packet Storm to note that in v15.1 they have fixed this issue by giving the same ambiguous error whether username, password, or both are entered incorrectly.
afa7eab64e3796e91e7449732e50d465cbd84d4c205ff7d076dc1e792fe908ae
© 2024 Packet Storm. All rights reserved.
%7Cutmcsr%3D(direct)%7Cutmcmd%3D(none)){kind=small}
Follow us on Twitter
Follow us on Facebook
Subscribe to an RSS Feed