Bypassing CAPTCHA Protections in Dell Quest One Password Manager

Bypassing CAPTCHA Protections in Dell Quest One Password Manager

CVE-2013-6246 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The Dell Quest One Password Manager, possibly 5.0, allows remote attackers to bypass CAPTCHA protections and obtain sensitive information (user's full name) by sending a login request with a valid domain and username but without the CaptchaType, UseCaptchaEveryTime, and CaptchaResponse parameters.

Learn more about our User Device Pen Test.