PT-2012-5514 · Emc · Emc Avamar Client For Vmware

Published

2012-10-31

Updated

2017-08-29

CVE-2012-4610

CVSS v2.0

3.3

Low

Vector

AV:A/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions EMC Avamar Client for VMware version 6.1

Description The issue allows remote attackers to obtain sensitive information by leveraging network access to the proxy client, as the cleartext server root password is stored on the proxy client.

Recommendations For version 6.1, consider restricting access to the proxy client to minimize the risk of exploitation. As a temporary workaround, limit network access to the proxy client until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2012-4610

Affected Products

Emc Avamar Client For Vmware

PT-2012-5514 · Emc · Emc Avamar Client For Vmware

CVE-2012-4610

Weakness Enumeration

Related Identifiers

Affected Products

References · 4