ID CVE-2012-0430
Summary Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:microfocus:edirectory:8.8.6.0:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.0:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.6:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.6:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.5:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.5:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.2:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.2:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.1:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.1:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.4:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.4:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.6.3:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.6.3:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.7.0:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.7.0:-:*:*:*:windows:*:*
  • cpe:2.3:a:microfocus:edirectory:8.8.7.1:-:*:*:*:windows:*:*
    cpe:2.3:a:microfocus:edirectory:8.8.7.1:-:*:*:*:windows:*:*
CVSS
Base: 6.4 (as of 13-04-2021 - 13:40)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:N
refmap via4
confirm
sectrack 1027910
Last major update 13-04-2021 - 13:40
Published 25-12-2012 - 12:13
Last modified 13-04-2021 - 13:40
Back to Top