PT-2010-1687 · Novell · Novell Access Manager

Published

2010-05-26

Updated

2010-05-27

CVE-2009-4879

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Novell Access Manager versions prior to 3.1 SP1

Description The issue allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, bypassing intended access restrictions.

Recommendations For versions prior to 3.1 SP1, update to version 3.1 SP1 or later to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2009-4879

Affected Products

Novell Access Manager

PT-2010-1687 · Novell · Novell Access Manager

CVE-2009-4879

Weakness Enumeration

Related Identifiers

Affected Products

References · 3