Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2012-2746

Published: 03/07/2012 Updated: 19/09/2017
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 187
Vector: AV:N/AC:H/Au:S/C:P/I:N/A:N
Subscribe to Directory Server

Vulnerability Summary

389 Directory Server prior to 1.2.11.6 (aka Red Hat Directory Server prior to 8.2.10-3), when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password.

Vulnerable Product Search on Vulmon Subscribe to Product

redhat directory server 7.1

redhat directory server

redhat directory server 8.1

redhat directory server 8.0

fedoraproject 389 directory server 1.2.7

fedoraproject 389 directory server 1.2.6

fedoraproject 389 directory server 1.2.3

fedoraproject 389 directory server 1.2.5

fedoraproject 389 directory server 1.2.8.1

fedoraproject 389 directory server 1.2.8

fedoraproject 389 directory server 1.2.10.2

fedoraproject 389 directory server 1.2.10.3

fedoraproject 389 directory server 1.2.2

fedoraproject 389 directory server 1.2.10

fedoraproject 389 directory server 1.2.10.1

fedoraproject 389 directory server 1.2.7.5

fedoraproject 389 directory server 1.2.8.2

fedoraproject 389 directory server 1.2.8.3

fedoraproject 389 directory server 1.2.10.4

fedoraproject 389 directory server 1.2.10.7

fedoraproject 389 directory server 1.2.6.1

fedoraproject 389 directory server 1.2.1

fedoraproject 389 directory server 1.2.9.9

fedoraproject 389 directory server 1.2.11.1

fedoraproject 389 directory server

Vendor Advisories

Red Hat: Moderate: redhat-ds-base security update
Synopsis Moderate: redhat-ds-base security update Type/Severity Security Advisory: Moderate Topic Updated redhat-ds-base packages that fix two security issues are nowavailable for Red Hat Directory Server 8The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vu ...
Red Hat: Moderate: 389-ds-base security update
Synopsis Moderate: 389-ds-base security update Type/Severity Security Advisory: Moderate Topic Updated 389-ds-base packages that fix two security issues are now availablefor Red Hat Enterprise Linux 6The Red Hat Security Response Team has rated this update as having moderatesecurity impact Common Vulnerab ...

References

CWE-310http://rhn.redhat.com/errata/RHSA-2012-1041.htmlhttp://www.osvdb.org/83329http://directory.fedoraproject.org/wiki/Release_Noteshttp://rhn.redhat.com/errata/RHSA-2012-0997.htmlhttp://www.securityfocus.com/bid/54153https://bugzilla.redhat.com/show_bug.cgi?id=833482https://fedorahosted.org/389/ticket/365http://secunia.com/advisories/49734https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03772083https://exchange.xforce.ibmcloud.com/vulnerabilities/76595https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19241https://access.redhat.com/errata/RHSA-2012:1041https://nvd.nist.gov
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322administrator privilegesCVE-2024-1579hardcodedCVE-2023-20198CVE-2024-33587CVE-2024-33449CVE-2024-4308HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook