BlackBerry Enterprise Server / Enterprise Service / Enterprise Server Express Information Disclosure (KB35647)

This script is Copyright (C) 2014 Tenable Network Security, Inc.


Synopsis :

The remote Windows host has an application that is affected by an
information disclosure vulnerability.

Description :

The version of BlackBerry Enterprise Server on the remote host
reportedly contains an error related to logging and enterprise instant
messages that could allow disclosure of sensitive information like
shared secrets and domain credentials.

See also :

http://www.nessus.org/u?fa09068e

Solution :

Apply the vendor-supplied patches.

Risk factor :

Low / CVSS Base Score : 1.9
(CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N)
CVSS Temporal Score : 1.7
(CVSS2#E:ND/RL:OF/RC:C)
Public Exploit Available : false

Family: Windows

Nessus Plugin ID: 72583 ()

Bugtraq ID: 65609

CVE ID: CVE-2014-1467

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now