EMC NetWorker 8.x < Management Console Information Disclosure

This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.

Synopsis :

The remote Windows host has an application installed that is affected
by an information disclosure vulnerability.

Description :

The version of EMC NetWorker is 8.x earlier than As such, it
is potentially affected by an information disclosure vulnerability.
When the NetWorker Management Console is configured to use Active
Directory/LDAP for authentication, an authenticated user may be able
to see the AD/LDAP administrator password transmitted in cleartext.

See also :


Solution :

Upgrade to EMC NetWorker / 8.1 or later.

Risk factor :

Medium / CVSS Base Score : 6.8
CVSS Temporal Score : 5.9
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 70727 ()

Bugtraq ID: 63402

CVE ID: CVE-2013-3285

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now