Vulnerabilities > CVE-2011-1711 - Unauthorized Access vulnerability in Novell Data Synchronizer User Account

CVSS 5.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

SINGLE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

NONE

network

low complexity

novell

NVD

Published: 2011-06-09

Updated: 2017-08-17

Summary

Unspecified vulnerability in the Mobility Pack 1.1.2 and earlier in Novell Data Synchronizer 1.0.x, and 1.1.x through 1.1.1 build 428, allows remote authenticated users to access the accounts of other users via unknown vectors.

Vulnerable Configurations

Part	Description	Count
Application	Novell Novell Data Synchronizer 1.0.0 Novell Data Synchronizer 1.1.0 Novell Data Synchronizer 1.1.1 Novell Mobility Pack 1.1 Novell Mobility Pack 1.1.1 Novell Mobility Pack 1.1.2	6

References

http://osvdb.org/72759
http://secunia.com/advisories/44864
http://www.novell.com/support/viewContent.do?externalId=7008690
http://www.securityfocus.com/bid/48117
http://www.securitytracker.com/id?1025608
https://exchange.xforce.ibmcloud.com/vulnerabilities/67840