| ID |
CVE-2016-5709
|
| Sažetak |
SolarWinds Virtualization Manager 6.3.1 and earlier uses weak encryption to store passwords in /etc/shadow, which allows local users with superuser privileges to obtain user passwords via a brute force attack. |
| Reference |
|
| CVSS |
| Base: | 1.9 |
| Impact: | 2.9 |
| Exploitability: | 3.4 |
|
| Pristup |
| Vektor | Složenost | Autentikacija |
| LOCAL |
MEDIUM |
NONE |
|
| Impact |
| Povjerljivost | Cjelovitost | Dostupnost |
| PARTIAL |
NONE |
NONE |
|
| CVSS vektor |
AV:L/AC:M/Au:N/C:P/I:N/A:N |
| Zadnje važnije ažuriranje |
30-11-2016 - 03:07 |
| Objavljeno |
24-06-2016 - 17:59 |
