Vulnerability CVE-2012-2746


Published: 2012-07-03   Modified: 2012-07-04

Description:
389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password.

Type:

CWE-310

(Cryptographic Issues)

Vendor: Redhat
Product: Directory server 
Version:
8.2
8.1
8.0
7.1
Vendor: Fedoraproject
Product: 389 directory server 
Version:
1.2.9.9
1.2.8.3
1.2.8.2
1.2.8.1
1.2.8
1.2.7.5
1.2.7
1.2.6.1
1.2.6
1.2.5
1.2.3
1.2.2
1.2.11.5
1.2.11.1
1.2.10.7
1.2.10.4
1.2.10.3
1.2.10.2
1.2.10.1
1.2.10
1.2.1

CVSS2 => (AV:N/AC:H/Au:S/C:P/I:N/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
2.1/10
2.9/10
3.9/10
Exploit range
Attack complexity
Authentication
Remote
High
Single time
Confidentiality impact
Integrity impact
Availability impact
Partial
None
None

 References:
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03772083
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03772083
https://fedorahosted.org/389/ticket/365
https://bugzilla.redhat.com/show_bug.cgi?id=833482
http://xforce.iss.net/xforce/xfdb/76595
http://www.securityfocus.com/bid/54153
http://www.osvdb.org/83329
http://secunia.com/advisories/49734
http://rhn.redhat.com/errata/RHSA-2012-1041.html
http://rhn.redhat.com/errata/RHSA-2012-0997.html
http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:19241
http://directory.fedoraproject.org/wiki/Release_Notes

Related CVE
CVE-2019-9516
Some HTTP/2 implementations are vulnerable to a header leak, potentially leading to a denial of service. The attacker sends a stream of headers with a 0-length header name and 0-length header value, optionally Huffman encoded into 1-byte or greater h...
CVE-2019-9513
Some HTTP/2 implementations are vulnerable to resource loops, potentially leading to a denial of service. The attacker creates multiple request streams and continually shuffles the priority of the streams in a way that causes substantial churn to the...
CVE-2019-9511
Some HTTP/2 implementations are vulnerable to window size manipulation and stream prioritization manipulation, potentially leading to a denial of service. The attacker requests a large amount of data from a specified resource over multiple streams. T...
CVE-2019-14234
An issue was discovered in Django 1.11.x before 1.11.23, 2.1.x before 2.1.11, and 2.2.x before 2.2.4. Due to an error in shallow key transformation, key and index lookups for django.contrib.postgres.fields.JSONField, and key lookups for django.contri...
CVE-2019-10171
It was found that the fix for CVE-2018-14648 in 389-ds-base, versions 1.4.0.x before 1.4.0.17, was incorrectly applied in RHEL 7.5. An attacker would still be able to provoke excessive CPU consumption leading to a denial of service.
CVE-2019-9849
LibreOffice has a 'stealth mode' in which only documents from locations deemed 'trusted' are allowed to retrieve remote resources. This mode is not the default mode, but can be enabled by users who want to disable LibreOffice's ability to include rem...
CVE-2019-9848
LibreOffice has a feature where documents can specify that pre-installed scripts can be executed on various document events such as mouse-over, etc. LibreOffice is typically also bundled with LibreLogo, a programmable turtle vector graphics script, w...
CVE-2019-13272
In the Linux kernel before 5.1.17, ptrace_link in kernel/ptrace.c mishandles the recording of the credentials of a process that wants to create a ptrace relationship, which allows local users to obtain root access by leveraging certain scenarios with...

Copyright 2019, cxsecurity.com

 

Back to Top