The BreakingPoint Storm appliance prior to 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote malicious users to obtain sensitive information by sniffing the network for XML documents.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
breakingpointsystems breakingpoint_storm_appliance_ctm |
||
breakingpointsystems breakingpoint_storm_appliance_ctm 1.2 |
||
breakingpointsystems breakingpoint_storm_appliance_ctm 1.4 |
||
breakingpointsystems breakingpoint_storm_appliance_ctm 1.5 |
||
breakingpointsystems breakingpoint_storm_appliance - |