CVE-2012-2284
Severity CVSS v4.0:
Pending analysis
Type:
CWE-255
Credentials Management
Publication date:
18/10/2012
Last modified:
11/04/2025
Description
The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local users to read cleartext administrator credentials via unspecified vectors.
Impact
Base Score 2.0
2.10
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:a:emc:networker_module_for_microsoft_applications:2.2.1:*:*:*:*:*:*:* | ||
| cpe:2.3:a:emc:networker_module_for_microsoft_applications:2.3:*:*:*:*:*:*:* | ||
| cpe:2.3:a:emc:networker_module_for_microsoft_applications:2.4:*:*:*:*:*:*:* | ||
| cpe:2.3:a:microsoft:exchange_server:*:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://archives.neohapsis.com/archives/bugtraq/2012-10/0068.html
- http://osvdb.org/86157
- http://secunia.com/advisories/50957
- http://www.securityfocus.com/bid/55883
- http://www.securitytracker.com/id?1027647=
- http://archives.neohapsis.com/archives/bugtraq/2012-10/0068.html
- http://osvdb.org/86157
- http://secunia.com/advisories/50957
- http://www.securityfocus.com/bid/55883
- http://www.securitytracker.com/id?1027647=