CVE-2012-4588

McAfee Enterprise Mobility Manager (EMM) Agent before 4.8 and Server before 10.1 record all invalid usernames presented in failed login attempts, and place them on a list of accounts that an administrator may wish to unlock, which allows remote attackers to cause a denial of service (excessive list size in the EMM Database) via a long sequence of login attempts with different usernames.
References
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mcafee:enterprise_mobility_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:mcafee:enterprise_mobility_manager_agent:*:*:*:*:*:*:*:*

Information

Published : 2012-08-22 03:42

Updated : 2012-08-22 03:42


NVD link : CVE-2012-4588

Mitre link : CVE-2012-4588


JSON object : View

CWE
CWE-255

Credentials Management Errors

Advertisement

dedicated server usa

Products Affected

mcafee

  • enterprise_mobility_manager
  • enterprise_mobility_manager_agent