Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2049

Overview

Vulnerability Score 4.6 4.6
CVE Id CVE-2004-2049
Last Modified 05 Sep 2008 04:43:03
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-2049

Summary

eSeSIX Thintune thin clients running firmware 2.4.38 and earlier store sensitive usernames and passwords in cleartext in configuration files for the keeper library, which allows attackers to gain access.

Vulnerable Systems


References

XF - thintune-plaintext-passwords(16795)

BID - 10794

SECUNIA - 12154

BUGTRAQ - 20040724 eSeSIX Thintune thin client multiple vulnerabilities

OSVDB - 8247

SECTRACK - 1010770


Last Updated: 27 May 2016 10:39:18