CVE-2011-0489P3HIGHCVSS 7.5PoCv10.02011-01-18
CVE-2011-0489 [HIGH] CWE-287 CVE-2011-0489: The server components in Objectivity/DB 10.0 do not require authentication for administrative comman
The server components in Objectivity/DB 10.0 do not require authentication for administrative commands, which allows remote attackers to modify data, obtain sensitive information, or cause a denial of service by sending requests over TCP to (1) the Lock Server or (2) the Advanced Multithreaded Server, as demonstrated by commands that are ordinarily sent
nvd