PT-2011-2423 · Vmware · Vmware Vfabric Tc Server

Published

2011-08-15

Updated

2017-08-17

CVE-2011-0527

CVSS v2.0

5.0

Medium

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions VMware vFabric tc Server versions 2.0.x through 2.0.5.RELEASE VMware vFabric tc Server versions 2.1.x through 2.1.1.RELEASE

Description The issue allows context-dependent attackers to obtain access more easily by leveraging the ability to read stored passwords, as the software accepts obfuscated passwords during JMX authentication.

Recommendations For versions 2.0.x through 2.0.5.RELEASE, update to version 2.0.6.RELEASE or later. For versions 2.1.x through 2.1.1.RELEASE, update to version 2.1.2.RELEASE or later.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

CVE-2011-0527

Affected Products

Vmware Vfabric Tc Server

PT-2011-2423 · Vmware · Vmware Vfabric Tc Server

CVE-2011-0527

Weakness Enumeration

Related Identifiers

Affected Products

References · 6