CVE Vulnerabilities

CVE-2015-2864

Published: Sep 21, 2015 | Modified: Dec 07, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

Retrospect and Retrospect Client before 10.0.2.119 on Windows, before 12.0.2.116 on OS X, and before 10.0.2.104 on Linux improperly generate password hashes, which makes it easier for remote attackers to bypass authentication and obtain access to backup files by leveraging a collision.

Affected Software

Name Vendor Start Version End Version
Retrospect Retrospect 10.0.2 (including) 10.0.2 (including)
Retrospect Retrospect 12.0.2 (including) 12.0.2 (including)
Retrospect_client Retrospect 10.0.2 (including) 10.0.2 (including)
Retrospect_client Retrospect 12.0.2 (including) 12.0.2 (including)

References