CVE

Id
48439  
CVE No.
CVE-2011-0527  
Status
Candidate  
Description
VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords.  
Phase
Assigned (20110120)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
526021 48439 CVE-2011-0527 FULLDISC:20110811 CVE-2011-0527: VMware vFabric tc Server password obfuscation bypass  View
526022 48439 CVE-2011-0527 URL:http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0122.html  View
526023 48439 CVE-2011-0527 CONFIRM:http://www.springsource.com/security/cve-2011-0527  View
526024 48439 CVE-2011-0527 BID:49122  View
526025 48439 CVE-2011-0527 URL:http://www.securityfocus.com/bid/49122  View
526026 48439 CVE-2011-0527 SECTRACK:1025923  View
526027 48439 CVE-2011-0527 URL:http://securitytracker.com/id?1025923  View
526028 48439 CVE-2011-0527 XF:tcserver-jmx-sec-bypass(69156)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
33927 JVNDB-2011-004169 389 Directory Server のバックアップおよび復旧スクリプトにおける権限を取得される脆弱性 389 Directory Server のバックアップおよび復旧スクリプト、メイン初期化のスクリプトおよび ldap-agent スクリプトは、LD_LIBRARY_PATH のゼロ長のディレクトリ名を配置するため、権限を取得される脆弱性が存在します。 CVE-2011-0532 48439 6.2 http://jvndb.jvn.jp/ja/contents/2011/JVNDB-2011-004169.html  View