Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4526

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2007-4526
Last Modified 07 Mar 2011 09:58:43
Published 24 Aug 2007 08:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2007-4526

Summary

The Client Login Extension (CLE) in Novell Identity Manager before 3.5.1 20070730 stores the username and password in a local file, which allows local users to obtain sensitive information by reading this file.

Vulnerable Systems

Application

  • Novell Client Login Extension %28cle%29

  • Novell Identity Manager 3.5


References

CONFIRM - https://secure-support.novell.com/KanisaPlatform/Publishing/177/3329402_f.SAL_Public.html

SECUNIA - 26555

XF - novell-identity-login-information-disclosure(36215)

VUPEN - ADV-2007-2957

BID - 25420

SECTRACK - 1018602

OSVDB - 37320


Last Updated: 27 May 2016 10:45:53