CVE-2013-5208

Sažetak

HR Systems Strategies info:HR HRIS 7.9 does not properly protect the database password, which allows local users to bypass intended database restrictions by accessing the USERPW registry key and bypassing an unspecified obfuscation technique.

Reference

CVSS

Base:	4.1
Impact:	6.4
Exploitability:	2.7

Pristup

Vektor	Složenost	Autentikacija
LOCAL	MEDIUM	SINGLE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:L/AC:M/Au:S/C:P/I:P/A:P

Zadnje važnije ažuriranje

16-10-2013 - 16:25

Objavljeno

16-10-2013 - 10:52