Lucene search
K

4 matches found

securityvulns
securityvulns
added 2014/10/27 12:0 a.m.51 views

ESA-2014-094: EMC Avamar Weak Password Storage Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ESA-2014-094: EMC Avamar Weak Password Storage Vulnerability EMC Identifier: ESA-2014-094 CVE Identifier: CVE-2014-4623 Severity Rating: 6.6 AV:L/AC:M/Au:S/C:C/I:C/A:C Affected products: ? EMC Avamar Data Store ADS GEN4S and Avamar Virtual Edition AVE...

4.3CVSS0.7AI score0.01593EPSS
Exploits0
Prion
Prion
added 2014/10/25 10:55 a.m.16 views

Default credentials

EMC Avamar 6.0.x, 6.1.x, and 7.0.x in Avamar Data Store ADS GEN4S and Avamar Virtual Edition AVE, when Password Hardening before 2.0.0.4 is enabled, uses UNIX DES crypt for password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force atta...

4.3CVSS7AI score0.01593EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added 2014/10/25 10:0 a.m.28 views

CVE-2014-4623

EMC Avamar 6.0.x, 6.1.x, and 7.0.x in Avamar Data Store ADS GEN4S and Avamar Virtual Edition AVE, when Password Hardening before 2.0.0.4 is enabled, uses UNIX DES crypt for password hashing, which makes it easier for context-dependent attackers to obtain cleartext passwords via a brute-force atta...

6.5AI score0.01593EPSS
Exploits0References5
CVE
CVE
added 2014/10/25 10:0 a.m.45 views

CVE-2014-4623

EMC Avamar ADS GEN4(S) and Avamar Virtual Edition (AVE) versions 6.0.x, 6.1.x, and 7.0.x are affected when the Password Hardening package is installed prior to 2.0.0.4. The issue stems from using UNIX DES crypt for password hashing, enabling context-dependent attackers to recover cleartext passwo...

4.3CVSS6.7AI score0.01593EPSS
Exploits0References5Affected Software1
Rows per page
Query Builder