Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3288

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-3288
Last Modified 07 Mar 2011 10:10:33
Published 24 Jul 2008 01:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3288

Summary

The Server Authentication Module in EMC Dantz Retrospect Backup Server 7.5.508 uses a "weak hash algorithm," which makes it easier for context-dependent attackers to recover passwords.

Vulnerable Systems

Application

  • Emc Dantz Retrospect Backup Server 7.5.508


References

BID - 30319

XF - retrospect-authentication-weak-security(43935)

VUPEN - ADV-2008-2150

SECTRACK - 1020534

BUGTRAQ - 20080722 FGA-2008-16: EMC Dantz Retrospect 7 backup Server Authentication Module Weak Password Hash Arithmetic Vulnerability

MISC - http://www.fortiguardcenter.com/advisory/FGA-2008-16.html

SREASON - 4026

SECUNIA - 31186


Last Updated: 27 May 2016 10:48:08