CVE-2012-0430

Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.novell.com/support/kb/doc.php?id=3426981
http://www.novell.com/support/kb/doc.php?id=7011538
http://www.securitytracker.com/id?1027910
https://bugzilla.novell.com/show_bug.cgi?id=772898

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microfocus:edirectory:8.8.6.0:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.1:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.2:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.3:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.4:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.5:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.6.6:-::::windows::*

Configuration 2 (hide)

OR	cpe:2.3:a:microfocus:edirectory:8.8.7.0:-::::windows::*
	cpe:2.3:a:microfocus:edirectory:8.8.7.1:-::::windows::*

History

13 Apr 2021, 13:40

Type	Values Removed	Values Added
CPE	cpe:2.3:a:netiq:edirectory:8.8.6.6:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.1:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.4:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.0:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.7.1:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.3:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.5:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.6.2:-::::windows::* cpe:2.3:a:netiq:edirectory:8.8.7.0:-::::windows::*	cpe:2.3:a:microfocus:edirectory:8.8.6.1:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.2:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.5:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.3:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.6:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.7.1:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.7.0:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.4:-::::windows::* cpe:2.3:a:microfocus:edirectory:8.8.6.0:-::::windows::*

Information

Published : 2012-12-25 12:13

Updated : 2023-12-10 11:16

NVD link : CVE-2012-0430

Mitre link : CVE-2012-0430

CVE.ORG link : CVE-2012-0430

JSON object : View

Products Affected

microfocus

edirectory

CWE

NVD-CWE-noinfo

6.4 /10