CVE-2012-2284
published 2012-10-18CVE-2012-2284: The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when…
PriorityP45low2.1CVSS 2.0
AVLACLAuNCPINAN
EPSS
0.33%
25.1th percentile
The (1) install and (2) upgrade processes in EMC NetWorker Module for Microsoft Applications (NMM) 2.2.1, 2.3 before build 122, and 2.4 before build 375, when Exchange Server is used, allow local users to read cleartext administrator credentials via unspecified vectors.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| emc | networker_module_for_microsoft_applications | — | — |
| emc | networker_module_for_microsoft_applications | — | — |
| emc | networker_module_for_microsoft_applications | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://archives.neohapsis.com/archives/bugtraq/2012-10/0068.htmlhttp://osvdb.org/86157http://secunia.com/advisories/50957http://www.securityfocus.com/bid/55883http://www.securitytracker.com/id?1027647http://archives.neohapsis.com/archives/bugtraq/2012-10/0068.htmlhttp://osvdb.org/86157http://secunia.com/advisories/50957http://www.securityfocus.com/bid/55883http://www.securitytracker.com/id?1027647
2012-10-18
Published