Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4758

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-4758
Last Modified 31 Jan 2012 11:12:20
Published 16 Dec 2011 06:55:11
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4758

Summary

Parallels Plesk Small Business Panel 10.2.0 receives cleartext password input over HTTP, which allows remote attackers to obtain sensitive information by sniffing the network, as demonstrated by forms in smb/auth and certain other files.

Vulnerable Systems

Application

  • Parallels Plesk Small Business Panel 10.2.0


References

MISC - http://xss.cx/examples/plesk-reports/plesk-10.2.0.html

XF - ppsbp-cleartext-info-disc(72210)


Last Updated: 27 May 2016 10:42:30