NVD

Id
46192  
Name
CVE-2012-4933  
Description
The rtrlet web application in the Web Console in Novell ZENworks Asset Management (ZAM) 7.5 uses a hard-coded username of Ivanhoe and a hard-coded password of Scott for the (1) GetFile_Password and (2) GetConfigInfo_Password operations, which allows remote attackers to obtain sensitive information via a crafted rtrlet/rtr request for the HandleMaintenanceCalls function.  
Reject
 
CVSS Version
2  
CVSS Score
7.8  
Severity
High  
CVSS Base Score
7.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:N/A:N)  
Pub Date
2017-01-19  
Published
2012-10-20  
Modified Date
2013-02-13  
Seq
2012-4933  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
231688 46192 CVE-2012-4933 VU#332412  View
231689 46192 CVE-2012-4933 1027682  View
231690 46192 CVE-2012-4933 novell-zam-info-disclosure(79252)  View
231691 46192 CVE-2012-4933 https://community.rapid7.com/community/metasploit/blog/2012/10/15/cve-2012-4933-novell-zenworks  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
29232 JVNDB-2012-004939 ZENworks Asset Management に情報漏えいの脆弱性 Novell が提供する ZENworks Asset Management には、情報漏えいの脆弱性が存在します。 CVE-2012-4933 58171 CVE-2012-4933 46192 7.8 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-004939.html 2012-10-16 2012-10-23 View