MidnightBSD

Advisories for funk_software

CVE-2002-0064 HIGH

Funk Software Proxy Host 3.x is installed with insecure permissions for the registry and the file system.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
funk_software funk_software_proxy 3.0
bindview netrc 3.06
funk_software funk_software_proxy 3.09a
funk_software funk_software_proxy 3.09
funk_software funk_software_proxy 3.06
bindview netrc 1.0
CVE-2002-0065 HIGH

Funk Software Proxy Host 3.x uses weak encryption for the Proxy Host password, which allows local users to gain privileges by recovering the passwords from the PHOST.INI file or the Windows registry.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
funk_software funk_software_proxy 3.0
bindview netrc 3.06
funk_software funk_software_proxy 3.09a
funk_software funk_software_proxy 3.09
funk_software funk_software_proxy 3.06
bindview netrc 1.0
CVE-2002-0066 HIGH

Funk Software Proxy Host 3.x before 3.09A creates a Named Pipe that does not require authentication and is installed with insecure access control, which allows local and possibly remote users to use the Proxy Host's configuration utilities and gain privileges.

CVSS 2.0

Severity: HIGH

Problem Type: NVD-CWE-Other,

Products Affected

Vendor Product Version
funk_software funk_software_proxy 3.0
bindview netrc 3.06
funk_software funk_software_proxy 3.09
funk_software funk_software_proxy 3.06
bindview netrc 1.0