389 Directory Server before 1.2.11.6 (aka Red Hat Directory Server before 8.2.10-3), when the password of a LDAP user has been changed and audit logging is enabled, saves the new password to the log in plain text, which allows remote authenticated users to read the password.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published: 2012-07-03T16:00:00

Updated: 2024-08-06T19:42:32.430Z

Reserved: 2012-05-14T00:00:00

Link: CVE-2012-2746

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2012-07-03T16:40:34.537

Modified: 2024-11-21T01:39:33.607

Link: CVE-2012-2746

cve-icon Redhat

Severity : Low

Publid Date: 2012-05-10T00:00:00Z

Links: CVE-2012-2746 - Bugzilla