CVE-2006-6477 Information

Description

FRAgent.exe in Mandiant First Response (MFR) before 1.1.1 when run in daemon mode and configured to use only HTTP allows local users to modify requests and responses between a client and an agent by hijacking an HTTP FRAgent daemon and conducting a man-in-the-middle (MITM) attack.

Reference

http://secunia.com/advisories/23393 http://securityreason.com/securityalert/2052 http://securitytracker.com/id?1017394 http://www.mandiant.com/firstresponse.htm http://www.securityfocus.com/archive/1/454712/100/0/threaded http://www.securityfocus.com/bid/21548 http://www.symantec.com/enterprise/research/SYMSA-2006-013.txt http://www.vupen.com/english/advisories/2006/5061