One Article Review
| Source |  CVE Liste |
|---|---|
| Identifiant | 373740 |
| Date de publication | 2017-06-13 13:29:00 (vue: 2017-06-13 13:29:00) |
| Titre | CVE-2017-9552 |
| Texte | A design flaw in authentication in Synology Photo Station 6.0-2528 through 6.7.1-3419 allows local users to obtain credentials via cmdline. Synology Photo Station employs the synophoto_dsm_user program to authenticate username and password by "synophoto_dsm_user --auth USERNAME PASSWORD", and local users are able to obtain credentials by sniffing "/proc/*/cmdline". |
| Envoyé | Oui |
| Condensat | /proc/*/cmdline 2017 2528 3419 9552 able allows are auth authenticate authentication cmdline credentials cve design dsm employs flaw local obtain password photo program sniffing station synology synophoto through user username users |
| Tags | |
| Stories | |
| Notes | |
| Move | 
|
L'article ne semble pas avoir été repris aprés sa publication.
L'article ne semble pas avoir été repris sur un précédent.