Cleartext Console Credentials Storage Vulnerability in NetSaro Enterprise Messenger Server 2.0

Cleartext Console Credentials Storage Vulnerability in NetSaro Enterprise Messenger Server 2.0

CVE-2011-3692 · LOW Severity

AV:L/AC:M/AU:N/C:P/I:N/A:N

NetSaro Enterprise Messenger Server 2.0 stores cleartext console credentials in configuration.xml, which allows local users to obtain sensitive information by reading this file and performing a base64 decoding step.

Learn more about our Cis Benchmark Audit For Server Software.