The Mobility Pack prior to 1.2 in Novell Data Synchronizer 1.x up to and including 1.1.2 build 428 does not properly restrict caching of HTTPS responses, which makes it easier for remote malicious users to obtain sensitive information by leveraging an unattended workstation.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
novell data synchronizer 1.0.0 |
||
novell data synchronizer 1.1.0 |
||
novell mobility pack 1.1.1 |
||
novell mobility pack 1.1.2 |
||
novell mobility pack 1.1 |
||
novell mobility pack 1.0 |
||
novell data synchronizer 1.1.1 |
||
novell data synchronizer 1.1.2 |