Cleartext Password Vulnerability in SmarterTools SmarterStats 6.0 Web Server

Cleartext Password Vulnerability in SmarterTools SmarterStats 6.0 Web Server

CVE-2011-2151 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The (1) Admin/frmEmailReportSettings.aspx, (2) Admin/frmGeneralSettings.aspx, (3) Admin/frmSite.aspx, (4) Client/frmUser.aspx, and (5) Login.aspx components in the SmarterTools SmarterStats 6.0 web server accept cleartext passwords, which makes it easier for remote attackers to obtain sensitive information by sniffing the network.

Learn more about our Web App Pen Testing.