Symantec Reporting Server 1.0.197.0, and other versions prior to 1.0.224.0, as used in Symantec Client Security 3.1 and later, and Symantec AntiVirus Corporate Edition (SAV CE) 10.1 and later, displays the password hash for a user after a failed login attempt, which makes it easier for remote malicious users to conduct brute force attacks.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec norton antivirus 10.1.396 |
||
symantec norton antivirus 10.1.400 |
||
symantec client security 3.1.401 |
||
symantec norton antivirus 10.0.2.2021 |
||
symantec client security 3.1 |
||
symantec client security 3.1.394 |
||
symantec norton antivirus 10.1.401 |
||
symantec norton antivirus 10.1 |
||
symantec client security 3.1.396 |
||
symantec client security 3.1.400 |
||
symantec reporting server |