CVEブラウザに戻る

CVE-2016-5405

CRITICAL

9.8

CVSS Severity Score

EPSS Score0.0480%

EPSS Percentile44.64th

Published2017年6月8日

Last Modified2026年5月13日

Vulnerability Description

389 Directory Server in Red Hat Enterprise Linux Desktop 6 through 7, Red Hat Enterprise Linux HPC Node 6 through 7, Red Hat Enterprise Linux Server 6 through 7, and Red Hat Enterprise Linux Workstation 6 through 7 allows remote attackers to obtain user passwords.

Affected Platforms (CPE)

💻

Redhat

Enterprise Linux Desktop

= 6.0

💻

Redhat

Enterprise Linux Desktop

= 7.0

💻

Redhat

Enterprise Linux Hpc Node

= 6.0

💻

Redhat

Enterprise Linux Hpc Node

= 7.0

💻

Redhat

Enterprise Linux Server

= 6.0

💻

Redhat

Enterprise Linux Server

= 7.0

💻

Redhat

Enterprise Linux Workstation

= 6.0

💻

Redhat

Enterprise Linux Workstation

= 7.0

References & Advisories

🔗 http://rhn.redhat.com/errata/RHSA-2016-2594.html

🔗 http://rhn.redhat.com/errata/RHSA-2016-2765.html

🔗 http://www.securityfocus.com/bid/93884

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1358865

🔗 http://rhn.redhat.com/errata/RHSA-2016-2594.html

🔗 http://rhn.redhat.com/errata/RHSA-2016-2765.html

🔗 http://www.securityfocus.com/bid/93884

🔗 https://bugzilla.redhat.com/show_bug.cgi?id=1358865

関連する脆弱性情報

CVE-2006-073610.0

Stack-based buffer overflow in the pam_micasa PAM authentication module in CASA on Novell Linux Desktop 9 and Open Enterprise Serv...

CVE-2016-70509.8

SerializableProvider in RESTEasy in Red Hat Enterprise Linux Desktop 7, Red Hat Enterprise Linux HPC Node 7, Red Hat Enterprise Li...

CVE-2016-16027.8

A code injection in the supportconfig data collection tool in supportutils in SUSE Linux Enterprise Server 12 and 12-SP1 and SUSE ...

CVE-2007-51967.5

Unspecified vulnerability in the SSL implementation in Groupwise client system in the novell-groupwise-client package in SUSE Linu...