Plaintext Username and Password Exposure in 1ArcServe Backup and Inoculan AV Client Modules for Exchange

Plaintext Username and Password Exposure in 1ArcServe Backup and Inoculan AV Client Modules for Exchange

CVE-1999-1322 · MEDIUM Severity

AV:L/AC:L/AU:N/C:P/I:P/A:P

The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passwords in plaintext.

Learn more about our Cis Benchmark Audit For Microsoft Exchange Server.