Notified:  April 20, 2012 Updated: June 05, 2012

Status

Affected

Vendor Statement

Bradford is committed to ensuring the security of its products and has released a software update addressing potential vulnerabilities described in Vulnerability Note VU#709939. These issues are addressed in software version 5.3.3 and higher for Bradford Network Sentry. Note: there have been no actual compromises reported to date by Bradford customers due to vulnerabilities described. Further information is available to customers via the Bradford Customer Portal (login required): Administrative GUI is Susceptible to the Execution of Unauthorized Administrative Actions https://na3.salesforce.com/sfc/#version?selectedDocumentId=06950000000IySO Administrative GUI is Susceptible to the Execution of Unauthorized Code https://na3.salesforce.com/sfc/#version?selectedDocumentId=06950000000IyBX Persistent Agent Messages are Susceptible to Unauthorized Replay https://na3.salesforce.com/sfc/#version?id=06850000000JDx3

Vendor Information

We are not aware of further vendor information regarding this vulnerability.

Vendor References

• https://na3.salesforce.com/sfc/#version?selectedDocumentId=06950000000IySO
• https://na3.salesforce.com/sfc/#version?selectedDocumentId=06950000000IyBX
• https://na3.salesforce.com/sfc/#version?id=06850000000JDx3