PT-2007-7222 · Ibm+1 · Ibm Tivoli Netcool Security Manager+1

Published

2007-12-15

Updated

2008-11-15

CVE-2007-6363

CVSS v2.0

2.1

Low

Vector

AV:N/AC:H/Au:S/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions IBM Tivoli Netcool Security Manager version 1.3.0 before Interim Fix 1

Description The issue allows remote attackers to obtain login access without entering a password when using Active Directory (AD) LDAP authentication.

Recommendations For IBM Tivoli Netcool Security Manager version 1.3.0, apply Interim Fix 1 to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2007-6363

Affected Products

Active Directory

Ibm Tivoli Netcool Security Manager

PT-2007-7222 · Ibm+1 · Ibm Tivoli Netcool Security Manager+1

CVE-2007-6363

Weakness Enumeration

Related Identifiers

Affected Products

References · 4