Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-1049

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-1999-1049
Last Modified 09 Sep 2008 08:36:46
Published 21 Feb 1999 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-1999-1049

Summary

ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt the password.

Vulnerable Systems

Application

  • Ca Arcserve Backup 6.5


References

BUGTRAQ - 19990222 Severe Security Hole in ARCserve NT agents (fwd)


Last Updated: 27 May 2016 10:35:15