CVE-2007-1345

Sažetak

Unspecified vulnerability in cube.exe in the GINA component for CA (Computer Associates) eTrust Admin 8.1.0 through 8.1.2 allows attackers with physical interactive or Remote Desktop access to bypass authentication and gain privileges via the password reset interface.

Reference

http://secunia.com/advisories/24441
http://securityreason.com/securityalert/2404
http://www.osvdb.org/32722
http://www.securityfocus.com/archive/1/462312/100/0/threaded
http://www.securityfocus.com/bid/22885
http://www.securitytracker.com/id?1017740
http://www.vupen.com/english/advisories/2007/0885
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=35145
https://exchange.xforce.ibmcloud.com/vulnerabilities/32887

CVSS

Base:	4.1
Impact:	6.4
Exploitability:	2.7

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

09-04-2021 - 13:51

Objavljeno

10-03-2007 - 19:19