HP-UX Directory Server Password Disclosure Vulnerabilities

Last Update Date: 29 May 2013 11:52 Release Date: 29 May 2013 3991 Views

RISK: Medium Risk

Medium Risk

TYPE: Servers - Network Management

TYPE: Network Management

Multiple vulnerabilities have been identified in HP-UX Directory Server, which can be exploited by remote authenticated user or  local user to view passwords.

  1. A local user can access the plaintext password in certain cases.
  2. A remote authenticated user can view the password for a target LDAP user when audit logging is enabled by reading the audit log.

Impact

  • Information Disclosure

System / Technologies affected

  • HP-UX Directory Server B.08.10.04

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

Vulnerability Identifier

Source

Related Link

Share with

Previous

Apache Struts OGNL Expression Injection Vulnerability

28 May 2013 4246 Views

Next

IrfanView FlashPix PlugIn FPX Processing Integer Overflow Vulnerability

31 May 2013 4060 Views

We use cookies to give you the best possible experience on our website. By continuing to browse this site, you give consent for cookies to be used. For more details please read our Cookie Policy.

PRIVACY POLICY