CVE-2012-3579

Sažetak

Symantec Messaging Gateway (SMG) before 10.0 has a default password for an unspecified account, which makes it easier for remote attackers to obtain privileged access via an SSH session.

Reference

http://packetstormsecurity.com/files/116277/Symantec-Messaging-Gateway-9.5-Default-SSH-Password.html
http://www.securityfocus.com/bid/55143
http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120827_00
https://exchange.xforce.ibmcloud.com/vulnerabilities/78034

CVSS

Base:	7.9
Impact:	10.0
Exploitability:	5.5

Pristup

Vektor	Složenost	Autentikacija
ADJACENT_NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:A/AC:M/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

29-08-2017 - 01:31

Objavljeno

29-08-2012 - 10:56