CVE-2006-6477
Summary
FRAgent.exe in Mandiant First Response (MFR) before 1.1.1, when run in daemon mode and configured to use only HTTP, allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.
- HIGH
- LOCAL
- SINGLE
- PARTIAL
- NONE
- PARTIAL
References
Advisory Timeline
- Published