Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2455

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2012-2455
Last Modified 12 Nov 2012 12:00:00
Published 09 Nov 2012 07:55:03
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-2455

Summary

Advanced Productivity Software DTE Axiom before 12.3.3 does not validate the registration ID, which allows remote attackers to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.

Vulnerable Systems

Application

  • Advance Productivity Software Dte Axiom 12.3.2


References

OSVDB - 85499

SECUNIA - 50508

FULLDISC - 20120906 Authentication flaw in APS-Soft DTE Axiom (CVE-2012-2455)


Last Updated: 27 May 2016 10:47:22