Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.8
CVSSv3

CVE-2016-6599

Published: 30/01/2018 Updated: 26/02/2018
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 755
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Bmc

Vulnerability Summary

BMC Track-It! 11.4 before Hotfix 3 exposes an unauthenticated .NET remoting configuration service (ConfigurationService) on port 9010. This service contains a method that can be used to retrieve a configuration file that contains the application database name, username and password as well as the domain administrator username and password. These are encrypted with a fixed key and IV ("NumaraIT") using the DES algorithm. The domain administrator username and password can only be obtained if the Self-Service component is enabled, which is the most common scenario in enterprise deployments.

Vulnerable Product Search on Vulmon Subscribe to Product

bmc track-it\\!

bmc track-it\\! 11.4

Exploits

Exploit DB: BMC Track-It! 11.4 - Multiple Vulnerabilities
>> Multiple critical vulnerabilities in BMC Track-It! 114 >> Discovered by Pedro Ribeiro (pedrib@gmailcom), Agile Information Security ================================================================================= Disclosure: 04/07/2016 / Last updated: 01/01/2017 >> Background and summary BMC Track-It! exposes several NET ...
Exploit DB: BMC Track-It! 11.4 Code Execution / Information Disclosure
BMC Track-It! version 114 suffers from remote code execution and credential disclosure vulnerabilities ...

References

CWE-255https://github.com/pedrib/PoC/blob/master/advisories/bmc-track-it-11.4.txthttps://communities.bmc.com/community/bmcdn/bmc_track-it/blog/2016/01/04/track-it-security-advisory-24-dec-2015http://seclists.org/fulldisclosure/2018/Jan/92http://packetstormsecurity.com/files/146110/BMC-Track-It-11.4-Code-Execution-Information-Disclosure.htmlhttps://nvd.nist.govhttps://www.exploit-db.com/exploits/43883/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581reflected XSSCVE-2024-26925CVE-2024-27956LFICVE-2024-3607CVE-2024-3107CVE-2024-3295SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook