Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0348

Overview

Vulnerability Score 3.5 3.5
CVE Id CVE-2014-0348
Last Modified 15 Apr 2014 12:57:11
Published 15 Apr 2014 06:55:11
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2014-0348

Summary

The Artiva Agency Single Sign-On (SSO) implementation in Artiva Workstation 1.3.x before 1.3.9, Artiva Rm 3.1 MR7, Artiva Healthcare 5.2 MR5, and Artiva Architect 3.2 MR5, when the domain-name option is enabled, allows remote attackers to login to arbitrary domain accounts by using the corresponding username on a Windows client machine.

Vulnerable Systems

Application

  • Ontariosystems Artiva Architect 3.2

  • Ontariosystems Artiva Healthcare 5.2

  • Ontariosystems Artiva Rm 3.1

  • Ontariosystems Artiva Workstation 1.3.0


References

CERT-VN - VU#215284


Last Updated: 27 May 2016 11:04:56