Lucene search

[email protected]NVD:CVE-2004-2436

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2436

2004-12-3105:00:00

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Computer Associates Unicenter Common Services 3.0 and earlier stores the database “SA” password in cleartext in the TndAddNspTmp.bat file, which could allow local users to gain privileges.

Affected configurations

NVD

Node

broadcomcommon_servicesMatch1.0

broadcomcommon_servicesMatch1.1

broadcomcommon_servicesMatch2.0

broadcomcommon_servicesMatch2.1

broadcomcommon_servicesMatch2.2

broadcomcommon_servicesMatch3.0

broadcomunicenter_network_and_systems_managementMatch3.0

broadcomunicenter_serviceplus_service_deskMatch6.0

References

osvdb.org/displayvuln.php?osvdb_id=10408

secunia.com/advisories/12639/

securitytracker.com/id?1011468

www.securityfocus.com/bid/11277

exchange.xforce.ibmcloud.com/vulnerabilities/17562

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.7 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2004-2436

cve1 cvelist1