[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248038

 
 

909

 
 

194772

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2008-3288Date: (C)2008-07-24   (M)2023-12-22


The Server Authentication Module in EMC Dantz Retrospect Backup Server 7.5.508 uses a "weak hash algorithm," which makes it easier for context-dependent attackers to recover passwords.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: NONE
Availability: NONE
  
Reference:
SECTRACK-1020534
http://www.securityfocus.com/archive/1/494636/100/0/threaded
BID-30319
SECUNIA-31186
SREASON-4026
ADV-2008-2150
http://kb.dantz.com/display/2/articleDirect/index.asp?aid=9692&r=0.5160639
http://www.fortiguardcenter.com/advisory/FGA-2008-16.html
retrospect-authentication-weak-security(43935)

CWE    1
CWE-310

© SecPod Technologies