Vulnerabilities > CVE-2000-0516 - Unspecified vulnerability in Intel Shiva Access Manager 5.0

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
intel
exploit available

Summary

When configured to store configuration information in an LDAP directory, Shiva Access Manager 5.0.0 stores the root DN (Distinguished Name) name and password in cleartext in a file that is world readable, which allows local users to compromise the LDAP server.

Vulnerable Configurations

Part Description Count
Application
Intel
1

Exploit-Db

descriptionIntel Corporation Shiva Access Manager 5.0 Solaris World Readable LDAP Password. CVE-2000-0516. Local exploit for solaris platform
idEDB-ID:20003
last seen2016-02-02
modified2000-06-06
published2000-06-06
reporterBlaise St. Laurent
sourcehttps://www.exploit-db.com/download/20003/
titleIntel Corporation Shiva Access Manager 5.0 Solaris World Readable LDAP Password