Lucene search
Veracode Vulnerability DatabaseVERACODE:24289HistoryApr 10, 2020 - 12:51 a.m.
Information Disclosure
2020-04-1000:51:50
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
7
0.0004 Low
EPSS
Percentile
5.1%
directory server is vulnerable to information disclosure. Directory Server setup scripts created cache files, containing passwords for the Directory and Administration Server administrative accounts, with weak file permissions. A local user could use this flaw to obtain authentication credentials for the administrative accounts.
References
rhn.redhat.com/errata/RHSA-2010-0590.html
secunia.com/advisories/40811
www.osvdb.org/66962
www.redhat.com/docs/manuals/dir-server/8.2/rel-notes/html
www.redhat.com/security/updates/classification/#low
www.securitytracker.com/id?1024281
access.redhat.com/errata/RHSA-2010:0590
bugzilla.redhat.com/show_bug.cgi?id=608032
Related
prion
prion
Design/Logic Flaw
2010-08-17 20:00:00
redhat
redhat
cve
cve
CVE-2010-2241
2010-08-17 20:00:03
cvelist
cvelist
CVE-2010-2241
2010-08-17 17:31:00
nvd
nvd
CVE-2010-2241
2010-08-17 20:00:03