1. CVE-Search
  2. CVE-2011-1742
ID CVE-2011-1742
Summary EMC Data Protection Advisor before 5.8.1 places cleartext account credentials in the DPA configuration file in unspecified circumstances, which might allow local users to obtain sensitive information by reading this file.
References
Vulnerable Configurations
  • cpe:2.3:a:emc:data_protection_advisor:5.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.0:sp1:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.6:*:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.6:*:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.6.1:*:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.6.1:*:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.7:*:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.7:*:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.7:sp1:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.7:sp1:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.7.1:*:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.7.1:*:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.7:-:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.7:-:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:-:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:-:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:sp1:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:sp1:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:sp2:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:sp2:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:sp3:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:sp3:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:sp4:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:sp4:*:*:*:*:*:*
  • cpe:2.3:a:emc:data_protection_advisor:5.8:sp5:*:*:*:*:*:*
    cpe:2.3:a:emc:data_protection_advisor:5.8:sp5:*:*:*:*:*:*
CVSS
Base: 2.1 (as of 14-03-2019 - 01:12)
Impact:
Exploitability:
CWE CWE-255
CAPEC
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:L/AC:L/Au:N/C:P/I:N/A:N
refmap via4
bugtraq 20110726 ESA-2011-021: EMC Data Protection Advisor sensitive information disclosure vulnerability
sreason 8318
Last major update 14-03-2019 - 01:12
Published 01-08-2011 - 19:55
Last modified 14-03-2019 - 01:12
Back to Top