Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-5968

Overview

Vulnerability Score 4.8 4.8
CVE Id CVE-2012-5968
Last Modified 29 Jan 2013 12:00:00
Published 19 Dec 2012 06:55:59
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector ADJACENT_NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-5968

Summary

The Huawei E585 device does not validate the status of admin sessions, which allows remote attackers to obtain sensitive user information and the session ID, and modify data, by leveraging access to the LAN network.

Vulnerable Systems


References

CERT-VN - VU#871148

CONFIRM - http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-198239.htm


Last Updated: 27 May 2016 10:57:37