PT-2012-3923 · Emc+1 · Networker Module For Microsoft Applications+1

Publicado

2012-10-18

Atualizado

2013-04-19

CVE-2012-2284

CVSS v2.0

2.1

Baixa

Vetor

AV:L/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions EMC NetWorker Module for Microsoft Applications (NMM) versions 2.2.1 through 2.3 before build 122 EMC NetWorker Module for Microsoft Applications (NMM) versions 2.4 before build 375

Description The issue affects the install and upgrade processes in EMC NetWorker Module for Microsoft Applications when used with Exchange Server, allowing local users to read cleartext administrator credentials.

Recommendations For versions 2.2.1 through 2.3 before build 122, update to build 122 or later to resolve the issue. For versions 2.4 before build 375, update to build 375 or later to resolve the issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-255

Identificadores relacionados

CVE-2012-2284

Produtos afetados

Networker Module For Microsoft Applications

Exchange Server

PT-2012-3923 · Emc+1 · Networker Module For Microsoft Applications+1

CVE-2012-2284

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6