Vulnerability Details CVE-2000-0516
When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP server.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 36.8%
CVSS Severity
CVSS v2 Score 7.2
References
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0008.html
- http://www.securityfocus.com/bid/1329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4612
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0008.html
- http://www.securityfocus.com/bid/1329
- https://exchange.xforce.ibmcloud.com/vulnerabilities/4612
Products affected by CVE-2000-0516
-
cpe:2.3:a:intel:shiva_access_manager:5.0