Lucene search

[email protected]NVD:CVE-2012-2284

HistoryOct 18, 2012 - 5:55 p.m.

CVE-2012-2284

2012-10-1817:55:01

CWE-255

[email protected]

web.nvd.nist.gov

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local users to read cleartext administrator credentials via unspecified vectors.

Affected configurations

NVD

Node

emcnetworker_module_for_microsoft_applicationsMatch2.2.1

emcnetworker_module_for_microsoft_applicationsMatch2.3

emcnetworker_module_for_microsoft_applicationsMatch2.4

AND

microsoftexchange_server

References

archives.neohapsis.com/archives/bugtraq/2012-10/0068.html

osvdb.org/86157

secunia.com/advisories/50957

www.securityfocus.com/bid/55883

www.securitytracker.com/id?1027647

2.1 Low

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:P/I:N/A:N

6.1 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

5.1%

JSON

Related for NVD:CVE-2012-2284

cve1 prion1 cvelist1 securityvulns2 nessus1