Vulnerabilities > CVE-2019-15719 - Unspecified vulnerability in Altair PBS Professional
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH low complexity
altair
Summary
Altair PBS Professional through 19.1.2 allows Privilege Escalation because an attacker can send a message directly to pbs_mom, which fails to properly authenticate the message. This results in code execution as an arbitrary user.
Vulnerable Configurations
Packetstorm
data source | https://packetstormsecurity.com/files/download/154782/pbsprofessionalmom-bypass.txt |
id | PACKETSTORM:154782 |
last seen | 2019-10-09 |
published | 2019-10-09 |
reporter | John Fitzpatrick |
source | https://packetstormsecurity.com/files/154782/PBS-Professional-19.2.3-Authentication-Bypass.html |
title | PBS Professional 19.2.3 Authentication Bypass |
References
- http://packetstormsecurity.com/files/154782/PBS-Professional-19.2.3-Authentication-Bypass.html
- http://packetstormsecurity.com/files/154782/PBS-Professional-19.2.3-Authentication-Bypass.html
- https://www.hpcsec.com
- https://www.hpcsec.com
- https://www.hpcsec.com/2019/10/08/cve-2019-15719/
- https://www.hpcsec.com/2019/10/08/cve-2019-15719/
- https://www.pbspro.org/
- https://www.pbspro.org/