CVE-2010-3122 — MEDIUM (5.0)

Vulnerability Description

The DevonIT thin-client management tool relies on a shared secret for authentication but transmits the secret in cleartext, which makes it easier for remote attackers to discover the secret value, and consequently obtain administrative control over client machines, by sniffing the network.

CVSS Score

5.0

MEDIUM

AV:N/AC:L/Au:N/C:P/I:N/A:N

Confidentiality

PARTIAL

Integrity

NONE

Availability

NONE

Affected Products

Vendor	Product	Versions
Devonit	Thin-Client Management Tool	All versions

Related Weaknesses (CWE)

CWE-255

References

http://www.kb.cert.org/vuls/id/278785US Government Resource
http://www.kb.cert.org/vuls/id/278785US Government Resource

FAQ

What is CVE-2010-3122?

CVE-2010-3122 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The DevonIT thin-client management tool relies on a shared secret for authentication but transmits the secret in cleartext, which makes it easier for remote attackers to discover the secret value, and...

How severe is CVE-2010-3122?

CVE-2010-3122 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2010-3122?

Check the references section above for vendor advisories and patch information. Affected products include: Devonit Thin-Client Management Tool.