Security Advisory

CVE-2014-1644

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2014-03-29 01:00:00

Last updated 2024-08-06 09:50:10

Assigner symantec

State PUBLISHED

Description

The forgotten-password feature in forcepasswd.do in the management GUI in Symantec LiveUpdate Administrator (LUA) 2.x before 2.3.2.110 allows remote attackers to reset arbitrary passwords by providing the e-mail address associated with a user account.

← Browse all CVEs View on cve.org ↗