漏洞类别:General remote services
漏洞等级: 
漏洞信息
Radia Client Automation software is an end-user device (PC and mobile device) lifecycle management tool for automating routine client-management tasks such as operating system deployments and upgrades, patch management, application software deployment, application use monitoring, security, compliance, and remote system management.
The vulnerability exists in the Notify Daemon (radexecd.exe), which does not authenticate the user issuing the request on TCP port 3465.
Affected Versions:
Persistent Systems Radia Client Automation (RCA) 7.9, 8.1, 9.0 and 9.1
漏洞危害
A remote attacker can exploit this vulnerability to execute arbitrary code under the context of SYSTEM.
解决方案
The vendor has released hotfixes for all supported versions. Please visit Accelerite for more information.
Patch:
Following are links for downloading patches to fix the vulnerabilities:
0day
文章评论