An information disclosure vulnerability in the Core and Management Console in BlackBerry Enterprise Server (BES) 12 up to and including 12.5.2 allows remote malicious users to obtain local or domain credentials of an administrator or user account by sniffing traffic between the two elements during a login attempt.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
blackberry enterprise service 12.5.0a |
||
blackberry enterprise service 12.4.1 |
||
blackberry enterprise service 12.0.0 |
||
blackberry enterprise service 12.5.2 |
||
blackberry enterprise service 12.5.1 |
||
blackberry enterprise service 12.1.0 |
||
blackberry enterprise service 12.0.1 |
||
blackberry enterprise service 12.2.1 |
||
blackberry enterprise service 12.2.0 |
||
blackberry enterprise service 12.4.0 |
||
blackberry enterprise service 12.3.1 |
||
blackberry enterprise service 12.3.0 |