Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2284

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2012-2284
Last Modified 18 Apr 2013 11:21:29
Published 18 Oct 2012 01:55:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2012-2284

Summary

The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local users to read cleartext administrator credentials via unspecified vectors.

Vulnerable Systems

Application

  • Emc Networker Module For Microsoft Applications 2.2.1

  • Emc Networker Module For Microsoft Applications 2.3

  • Emc Networker Module For Microsoft Applications 2.4


References

BUGTRAQ - 20121010 ESA-2012-025: EMC NetWorker Module for Microsoft Applications (NMM) Multiple Vulnerabilities

OSVDB - 86157

SECTRACK - 1027647

BID - 55883

SECUNIA - 50957


Last Updated: 27 May 2016 11:01:03