CVE-2012-2606 Information

Description

The agent in Bradford Network Sentry before 5.3.3 does not require authentication for messages which allows remote attackers to trigger the display of arbitrary text on a workstation via a crafted packet to UDP port 4567 as demonstrated by a replay attack.

Reference

http://www.kb.cert.org/vuls/id/709939 http://www.kb.cert.org/vuls/id/MAPG-8TJKAF https://na3.salesforce.com/sfc/version?id=06850000000JDx3