CVE-2012-4615 Information

Description

EMC Smarts Network Configuration Manager (NCM) before 9.1 uses a hardcoded encryption key for the storage of credentials which allows local users to obtain sensitive information via unspecified vectors.

Reference

http://archives.neohapsis.com/archives/bugtraq/2012-11/0095.html http://osvdb.org/87878 http://packetstormsecurity.org/files/118358/EMC-Smarts-Network-Configuration-Manager-Bypass.html http://secunia.com/advisories/51408 http://www.securityfocus.com/bid/56682 http://www.securitytracker.com/id?1027812