Vulnerability Details CVE-2004-2436
Computer Associates Unicenter Common Services 3.0 and earlier stores the database "SA" password in cleartext in the TndAddNspTmp.bat file, which could allow local users to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.0%
CVSS Severity
CVSS v2 Score 2.1
References
- http://osvdb.org/displayvuln.php?osvdb_id=10408
- http://secunia.com/advisories/12639/
- http://securitytracker.com/id?1011468
- http://www.securityfocus.com/bid/11277
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17562
- http://osvdb.org/displayvuln.php?osvdb_id=10408
- http://secunia.com/advisories/12639/
- http://securitytracker.com/id?1011468
- http://www.securityfocus.com/bid/11277
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17562
Products affected by CVE-2004-2436
-
cpe:2.3:a:broadcom:common_services:1.0
-
cpe:2.3:a:broadcom:common_services:1.1
-
cpe:2.3:a:broadcom:common_services:2.0
-
cpe:2.3:a:broadcom:common_services:2.1
-
cpe:2.3:a:broadcom:common_services:2.2
-
cpe:2.3:a:broadcom:common_services:3.0
-
cpe:2.3:a:broadcom:unicenter_network_and_systems_management:3.0
-
cpe:2.3:a:broadcom:unicenter_serviceplus_service_desk:6.0