New Search

HP-UX Directory Server Remote Disclosure of Information

oval:org.mitre.oval:def:19241

389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3) when the password of a LDAP user has been changed and audit logging is enabled saves the new password to the log in plain text which allows remote authenticated users to read the password.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2012-2746
Product(s):