Max CVSS | 7.5 | Min CVSS | 7.5 | Total Count | 2 |
ID | CVSS | Summary | Last (major) update | Published | |
CVE-2009-0695 | 7.5 |
hagent.exe in Wyse Device Manager (WDM) 4.7.x does not require authentication for commands, which allows remote attackers to obtain management access via a crafted query, as demonstrated by a V52 query that triggers a power-off action.
|
26-06-2012 - 04:00 | 19-06-2012 - 20:55 | |
CVE-2009-0693 | 7.5 |
Multiple buffer overflows in Wyse Device Manager (WDM) 4.7.x allow remote attackers to execute arbitrary code via (1) the User-Agent HTTP header to hserver.dll or (2) unspecified input to hagent.exe.
|
20-06-2012 - 04:00 | 19-06-2012 - 20:55 |