CVE-2014-3139: snmpd.php bypass authentication

Unitrends
Backup
Configure

SUMMARY

To fix vulnerability in Unitrends snmpd.php allowing an authentication exploit

CVE ID

CVE-2014-3139

DESCRIPTION

recoveryconsole/bpl/snmpd.php in Unitrends Enterprise Backup 7.3.0 allows remote attackers to bypass authentication by setting the auth parameter to a certain string.

RESOLUTION

Resolved in the latest Unitrends security update.

LINK TO ADVISORIES

https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-3139 https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3139 http://www.cvedetails.com/cve/CVE-2014-3139/

Was this article helpful?

0 out of 0 found this helpful

Have more questions? Contact us

Browse this section

Remove ISCSI sessions using the Linux command line
Windows Volume Shadow copy Services (VSS) Problem Determination
OpenVPN - How to remove the OpenVPN configuration from an appliance
Volume Shadow Copy Service Errors
Error: Virtual Machine could not be started because the hypervisor is not running
How do I change the sendmail 'from' address and domain on the appliance emails?
VSS Writer Failed / How to Restart and Re-Register VSS Writers
Animated Tutorials
CVE-2014-7169: Additional Bash Vulnerability
Hyper-V 2012 backup errors with "An error was encountered while getting version of the VM"