CVE-2011-2223
Published Aug 9, 2011
Last updated 9 years ago
Overview
- Description
- The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin LDAP password in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.
- Source
- cve@mitre.org
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-310
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:novell:data_synchronizer:1.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5579D41A-0967-44DD-A961-C815DA8E4940"
},
{
"criteria": "cpe:2.3:a:novell:data_synchronizer:1.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "06FF70F0-D02D-44C2-B5A4-A6AF9C0140F9"
},
{
"criteria": "cpe:2.3:a:novell:data_synchronizer:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A10395C5-8191-49B8-83A5-196EC4DFC171"
},
{
"criteria": "cpe:2.3:a:novell:data_synchronizer:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4A6CD40A-4EA1-460E-B365-2E9CD8FFEED3"
},
{
"criteria": "cpe:2.3:a:novell:mobility_pack:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "357FC59C-67DC-4A4A-A53A-8B0C6AE631DE"
},
{
"criteria": "cpe:2.3:a:novell:mobility_pack:1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "400890BC-2A6E-4AF4-8046-E1AEFD46206A"
},
{
"criteria": "cpe:2.3:a:novell:mobility_pack:1.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A4AFFC40-B1C0-4309-8539-E845E07A1F5A"
},
{
"criteria": "cpe:2.3:a:novell:mobility_pack:1.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AF03F557-EC68-4E2B-B288-E3A2F505DEB2"
}
],
"operator": "OR"
}
]
}
]