Skip to main content

CVE-2006-6476

Severity Low
Score 2.4/10

Summary

FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and when the agent is bound to 0.0.0.0 (all interfaces), opens sockets in non-exclusive mode, which allows local users to hijack the socket, and capture data or cause a denial of service (loss of daemon operation).

  • HIGH
  • LOCAL
  • SINGLE
  • NONE
  • PARTIAL
  • PARTIAL

References

Advisory Timeline

  • Published