Описание
VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords.
VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2011-0527
- https://exchange.xforce.ibmcloud.com/vulnerabilities/69156
- http://archives.neohapsis.com/archives/fulldisclosure/2011-08/0122.html
- http://securitytracker.com/id?1025923
- http://www.securityfocus.com/bid/49122
- http://www.springsource.com/security/cve-2011-0527
Связанные уязвимости
VMware vFabric tc Server (aka SpringSource tc Server) 2.0.x before 2.0.6.RELEASE and 2.1.x before 2.1.2.RELEASE accepts obfuscated passwords during JMX authentication, which makes it easier for context-dependent attackers to obtain access by leveraging an ability to read stored passwords.