| ID |
CVE-2016-0910
|
| Sažetak |
EMC Data Domain OS 5.5 before 5.5.4.0, 5.6 before 5.6.1.004, and 5.7 before 5.7.2.0 stores session identifiers of GUI users in a world-readable file, which allows local users to hijack arbitrary accounts via unspecified vectors. |
| Reference |
|
| CVSS |
| Base: | 4.3 |
| Impact: | 6.4 |
| Exploitability: | 3.1 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
LOW |
SINGLE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
PARTIAL |
PARTIAL |
|
| CVSS vektor |
AV:L/AC:L/Au:S/C:P/I:P/A:P |
| Zadnje važnije ažuriranje |
11-01-2017 - 02:59 |
| Objavljeno |
10-06-2016 - 01:59 |
