2.1 CVE-2011-4142

 

The Web Search feature in EMC SourceOne Email Management 6.5 before 6.5.2.4033, 6.6 before 6.6.1.2194, and 6.7 before 6.7.2.2033 places cleartext credentials in log files, which allows local users to obtain sensitive information by reading these files.
https://nvd.nist.gov/vuln/detail/CVE-2011-4142

Categories

CWE-255

References


 

CPE

cpe start end
Configuration 1
cpe:2.3:a:emc:sourceone_email_management:6.5:*:*:*:*:*:*:*
cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:* <= 6.5.2.3668
cpe:2.3:a:emc:sourceone_email_management:6.6:*:*:*:*:*:*:*
cpe:2.3:a:emc:sourceone_email_management:6.6.0.1209:*:*:*:*:*:*:*
cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:* <= 6.6.1.2108
cpe:2.3:a:emc:sourceone_email_management:6.7:*:*:*:*:*:*:*
cpe:2.3:a:emc:sourceone_email_management:*:*:*:*:*:*:*:* <= 6.7.2.0017


REMEDIATION




EXPLOITS


Exploit-db.com

id description date
No known exploits

Other (github, ...)

Url
No known exploits


CAPEC


Common Attack Pattern Enumerations and Classifications

id description severity
No entry


MITRE