The RPC API in the RSCD agent in BMC BladeLogic Server Automation (BSA) 8.2.x, 8.3.x, 8.5.x, 8.6.x, and 8.7.x on Linux and UNIX allows remote attackers to bypass authorization and reset arbitrary user passwords by sending an action packet to xmlrpc after an authorization failure.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2016-06-13T14:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2016-01-07T00:00:00
Link: CVE-2016-1543
JSON object: View
NVD Information
Status : Modified
Published: 2016-06-13T14:59:01.540
Modified: 2018-10-09T19:59:12.647
Link: CVE-2016-1543
JSON object: View
Redhat Information
No data.
CWE