Security Advisory

CVE-2009-4657

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2010-03-03 20:00:00

Last updated 2024-08-07 07:08:38

Assigner mitre

State PUBLISHED

Description

The administrator package for Xerver 4.32 does not require authentication, which allows remote attackers to alter application settings by connecting to the application on port 32123, as demonstrated by setting the action option to wizardStep1.

← Browse all CVEs View on cve.org ↗