CVE Vulnerabilities

CVE-2011-2223

Published: Aug 09, 2011 | Modified: Oct 29, 2015
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin LDAP password in cleartext, which allows remote attackers to obtain sensitive information by sniffing the network.

Affected Software

Name Vendor Start Version End Version
Data_synchronizer Novell 1.0.0 (including) 1.0.0 (including)
Data_synchronizer Novell 1.1.0 (including) 1.1.0 (including)
Data_synchronizer Novell 1.1.1 (including) 1.1.1 (including)
Data_synchronizer Novell 1.1.2 (including) 1.1.2 (including)
Mobility_pack Novell 1.0 (including) 1.0 (including)
Mobility_pack Novell 1.1 (including) 1.1 (including)
Mobility_pack Novell 1.1.1 (including) 1.1.1 (including)
Mobility_pack Novell 1.1.2 (including) 1.1.2 (including)

References