CVE-2011-3014

Currently unrated

Key Information:

Vendor: Novell
Status: Mobility Pack; Data Synchronizer
Vendor: CVE Published:; 9 August 2011

Summary

The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 does not properly restrict caching of HTTPS responses, which makes it easier for remote attackers to obtain sensitive information by leveraging an unattended workstation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/69167

vdb-entryx_refsource_XF

http://www.novell.com/support/viewContent.do?externalId=7...

x_refsource_CONFIRM

Timeline

Vulnerability published
Aug 9, 2011
Vulnerability Reserved
Aug 9, 2011

Collectors

NVD DatabaseMitre Database