CVE-2012-0430

Severity

64%

Complexity

99%

Confidentiality

81%

Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors.

Unspecified vulnerability in NetIQ eDirectory 8.8.6.x before 8.8.6.7 and 8.8.7.x before 8.8.7.2 on Windows allows remote attackers to obtain an administrator cookie and bypass authorization checks via unknown vectors.

CVSS 2.0 Base Score 6.4. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:N).

Overview

Type

NetIQ eDirectory

First reported 12 years ago

2012-12-25 12:13:00

Last updated 11 years ago

2013-03-14 03:04:00

Affected Software

NetIQ eDirectory 8.8.6.0 for Windows

8.8.6.0
windows

NetIQ eDirectory 8.8.6.1 for Windows

8.8.6.1
windows

NetIQ eDirectory 8.8.6.2 for Windows

8.8.6.2
windows

NetIQ eDirectory 8.8.6.3 for Windows

8.8.6.3
windows

NetIQ eDirectory 8.8.6.4 for Windows

8.8.6.4
windows

NetIQ eDirectory 8.8.6.5 for Windows

8.8.6.5
windows

NetIQ eDirectory 8.8.6.6 for Windows

8.8.6.6
windows

NetIQ eDirectory 8.8.7.0 for Windows

8.8.7.0
windows

NetIQ eDirectory 8.8.7.1 for Windows

8.8.7.1
windows

References

http://www.novell.com/support/kb/doc.php?id=3426981

http://www.novell.com/support/kb/doc.php?id=7011538

1027910

https://bugzilla.novell.com/show_bug.cgi?id=772898

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.