CVE-2007-6363 - Vulnerability Details - OpenCVE

IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecified vectors without entering a password.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication Single

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Ibm	Tivoli Netcool Security Manager

Configuration 1 [-]

cpe:2.3:a:ibm:tivoli_netcool_security_manager:1.3.0:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/43718
http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768
http://www-1.ibm.com/support/docview.wss?uid=swg24017385

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-12-15T01:00:00

Updated: 2024-08-07T16:02:36.301Z

Reserved: 2007-12-14T00:00:00

Link: CVE-2007-6363

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2007-12-15T01:46:00.000

Modified: 2025-04-09T00:30:58.490

Link: CVE-2007-6363

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-11-29T00:00:00", "descriptions": [{"lang": "en", "value": "IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecified vectors without entering a password."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2008-11-15T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "IZ04768", "tags": ["vendor-advisory", "x_refsource_AIXAPAR"], "url": "http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768"}, {"name": "43718", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/43718"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "[email protected]", "ID": "CVE-2007-6363", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecified vectors without entering a password."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "IZ04768", "refsource": "AIXAPAR", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768"}, {"name": "43718", "refsource": "OSVDB", "url": "http://osvdb.org/43718"}, {"name": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385", "refsource": "CONFIRM", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T16:02:36.301Z"}, "title": "CVE Program Container", "references": [{"name": "IZ04768", "tags": ["vendor-advisory", "x_refsource_AIXAPAR", "x_transferred"], "url": "http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768"}, {"name": "43718", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/43718"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-6363", "datePublished": "2007-12-15T01:00:00", "dateReserved": "2007-12-14T00:00:00", "dateUpdated": "2024-08-07T16:02:36.301Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ibm:tivoli_netcool_security_manager:1.3.0:*:*:*:*:*:*:*", "matchCriteriaId": "47DBE32E-5411-43D9-BC52-92E5AE075F7D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "IBM Tivoli Netcool Security Manager 1.3.0 before Interim Fix 1, when using Active Directory (AD) LDAP authentication, allows remote attackers to obtain login access via unspecified vectors without entering a password."}, {"lang": "es", "value": "IBM Tivoli Netcool Security Manager 1.3.0 versiones anteriores a Interim Fix 1, cuando se utiliza autenticaci\u00f3n Active Directory (AD) LDAP, permite a atacantes remotos obtener acceso de autenticaci\u00f3n mediante vectores no especificados sin introducir contrase\u00f1a."}], "id": "CVE-2007-6363", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "NONE", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:S/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Primary", "userInteractionRequired": true}]}, "published": "2007-12-15T01:46:00.000", "references": [{"source": "[email protected]", "url": "http://osvdb.org/43718"}, {"source": "[email protected]", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768"}, {"source": "[email protected]", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/43718"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg1IZ04768"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www-1.ibm.com/support/docview.wss?uid=swg24017385"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "[email protected]", "type": "Primary"}]}