Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4046

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-4046
Last Modified 15 Nov 2011 12:00:00
Published 11 Nov 2011 07:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4046

Summary

The Dell KACE K2000 System Deployment Appliance stores the recovery account password in cleartext within a PHP script, which allows context-dependent attackers to obtain sensitive information by examining script source code.

Vulnerable Systems


References

CERT-VN - VU#135606

CONFIRM - http://www.kace.com/support/kb/index.php?action=artikel&id=1120&artlang=en


Last Updated: 27 May 2016 10:57:48