Advertisement






FedEx Ship Manager (FSM) 3704 Insecure .NET Remoting

CVE Category Price Severity
CVE-2014-5927 CWE-862 $10,000 High
Author Risk Exploitation Type Date
Unknown High Remote 2023-04-05
CVSS
CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Our sensors found this exploit at: https://cxsecurity.com/ascii/WLB-2023040022

Below is a copy:

FedEx Ship Manager (FSM) 3704 Insecure .NET Remoting
Vulnerable Software Download URL:
https://www.fedex.com/en-us/shipping/ship-manager/software.html#tab-4

FSM 3704 (and some earlier versions) use .NET Remoting in a way that can
lead to unauthenticated remote code execution attacks as SYSTEM. Tools that
can successfully attack affected services are freely available.
Administrators should block or otherwise limit access to TCP ports opened
by services installed by this software wherever possible.

Copyright ©2024 Exploitalert.

All trademarks used are properties of their respective owners. By visiting this website you agree to Terms of Use.