Executive Summary
| Informations | |||
|---|---|---|---|
| Name | CVE-2012-2668 | First vendor Publication | 2012-06-16 |
| Vendor | Cve | Last vendor Modification | 2024-11-21 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:P/I:N/A:N) | |||
|---|---|---|---|
| Cvss Base Score | 4.3 | Attack Range | Network |
| Cvss Impact Score | 2.9 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default cipher suite even when TLSCipherSuite is set, which might cause OpenLDAP to use weaker ciphers than intended and make it easier for remote attackers to obtain sensitive information. |
Original Source
| Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2668 |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-200 | Information Exposure |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:21596 | |||
| Oval ID: | oval:org.mitre.oval:def:21596 | ||
| Title: | RHSA-2012:1151: openldap security and bug fix update (Low) | ||
| Description: | libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default cipher suite even when TLSCipherSuite is set, which might cause OpenLDAP to use weaker ciphers than intended and make it easier for remote attackers to obtain sensitive information. | ||
| Family: | unix | Class: | patch |
| Reference(s): | RHSA-2012:1151-01 CESA-2012:1151 CVE-2012-2668 | Version: | 4 |
| Platform(s): | Red Hat Enterprise Linux 6 CentOS Linux 6 | Product(s): | openldap |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:23471 | |||
| Oval ID: | oval:org.mitre.oval:def:23471 | ||
| Title: | ELSA-2012:1151: openldap security and bug fix update (Low) | ||
| Description: | libraries/libldap/tls_m.c in OpenLDAP, possibly 2.4.31 and earlier, when using the Mozilla NSS backend, always uses the default cipher suite even when TLSCipherSuite is set, which might cause OpenLDAP to use weaker ciphers than intended and make it easier for remote attackers to obtain sensitive information. | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2012:1151-01 CVE-2012-2668 | Version: | 6 |
| Platform(s): | Oracle Linux 6 | Product(s): | openldap |
| Definition Synopsis: | |||
| |||
| Definition Id: oval:org.mitre.oval:def:27053 | |||
| Oval ID: | oval:org.mitre.oval:def:27053 | ||
| Title: | DEPRECATED: ELSA-2012-1151 -- openldap security and bug fix update (low) | ||
| Description: | [2.4.23-26.2] - CVE-2012-2668 (#825875) cipher suite selection by name can be ignored default cipher suite is always selected [2.4.23-26.1] - fix: smbk5pwd module computes invalid LM hashes (#820278) | ||
| Family: | unix | Class: | patch |
| Reference(s): | ELSA-2012-1151 CVE-2012-2668 | Version: | 4 |
| Platform(s): | Oracle Linux 6 | Product(s): | openldap |
| Definition Synopsis: | |||
| |||
CPE : Common Platform Enumeration
OpenVAS Exploits
| Date | Description |
|---|---|
| 2012-08-30 | Name : Fedora Update for openldap FEDORA-2012-10000 File : nvt/gb_fedora_2012_10000_openldap_fc17.nasl |
| 2012-08-09 | Name : CentOS Update for openldap CESA-2012:1151 centos6 File : nvt/gb_CESA-2012_1151_openldap_centos6.nasl |
| 2012-08-09 | Name : RedHat Update for openldap RHSA-2012:1151-01 File : nvt/gb_RHSA-2012_1151-01_openldap.nasl |
| 2012-07-19 | Name : Fedora Update for openldap FEDORA-2012-10023 File : nvt/gb_fedora_2012_10023_openldap_fc16.nasl |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2014-11-08 | Name : The remote Red Hat host is missing a security update. File : redhat-RHSA-2012-1200.nasl - Type : ACT_GATHER_INFO |
| 2014-07-01 | Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201406-36.nasl - Type : ACT_GATHER_INFO |
| 2013-09-04 | Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2012-117.nasl - Type : ACT_GATHER_INFO |
| 2013-07-12 | Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2012-1151.nasl - Type : ACT_GATHER_INFO |
| 2012-08-10 | Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2012-1151.nasl - Type : ACT_GATHER_INFO |
| 2012-08-09 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2012-1151.nasl - Type : ACT_GATHER_INFO |
| 2012-08-09 | Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20120808_openldap_on_SL6_x.nasl - Type : ACT_GATHER_INFO |
| 2012-07-18 | Name : The remote Fedora host is missing a security update. File : fedora_2012-10000.nasl - Type : ACT_GATHER_INFO |
| 2012-07-18 | Name : The remote Fedora host is missing a security update. File : fedora_2012-10023.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
| Date | Informations |
|---|---|
| 2024-11-28 23:01:29 |
|
| 2024-11-28 12:30:03 |
|
| 2023-02-13 09:28:45 |
|
| 2021-05-05 01:10:32 |
|
| 2021-05-04 12:19:59 |
|
| 2021-04-22 01:23:42 |
|
| 2020-05-23 01:48:49 |
|
| 2020-05-23 00:33:41 |
|
| 2019-08-09 12:04:48 |
|
| 2017-08-29 09:23:49 |
|
| 2017-01-07 09:25:09 |
|
| 2016-04-26 21:51:15 |
|
| 2014-11-08 13:30:09 |
|
| 2014-07-02 13:25:51 |
|
| 2014-02-17 11:10:36 |
|
| 2013-05-10 22:39:53 |
|
