VYPR

Tripwire

by Tripwire

CVEs (4)

  • CVE-2015-6237CriDec 27, 2017
    risk 0.64cvss 9.8epss 0.02

    The RPC service in Tripwire (formerly nCircle) IP360 VnE Manager 7.2.2 before 7.2.6 allows remote attackers to bypass authentication and (1) enumerate users, (2) reset passwords, or (3) manipulate IP filter restrictions via crafted "privileged commands."

  • CVE-2004-0536Aug 6, 2004
    risk 0.00cvss epss 0.00

    Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file name, which is used in the generation of an email report.

  • CVE-2001-0774Oct 18, 2001
    risk 0.00cvss epss 0.00

    Tripwire 1.3.1, 2.2.1 and 2.3.0 allows local users to overwrite arbitrary files and possible gain privileges via a symbolic link attack on temporary files.

  • CVE-1999-0464Jan 4, 1999
    risk 0.00cvss epss 0.00

    Local users can perform a denial of service in Tripwire 1.2 and earlier using long filenames.