CVE-2013-3710

Currently unrated

Key Information:

Vendor: Novell
Status: Suse Lifecycle Management Server
Vendor: CVE Published:; 10 December 2013

Summary

SUSE Lifecycle Management Server (SLMS) before 1.3.7 does not generate a new secret key when the service starts, which allows remote attackers to defeat intended cryptographic protection mechanisms by leveraging knowledge of this key from a product installation elsewhere.

References

https://www.suse.com/support/update/announcement/2013/sus...

vendor-advisoryx_refsource_SUSE

https://bugzilla.novell.com/show_bug.cgi?id=852101

x_refsource_CONFIRM

http://osvdb.org/100653

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Dec 10, 2013
Vulnerability Reserved
May 30, 2013

Collectors

NVD DatabaseMitre Database