Adobe Contribute Publishing Server Administrator Password Local Disclosure
Low Nessus Plugin ID 22540
SynopsisThe remote Windows host contains an application that is affected by an information disclosure vulnerability.
DescriptionAdobe Contribute Publishing Server, a web publishing management application, is installed on the remote Windows host.
The version of Contribute Publishing Server on the remote host logged a copy of the password specified for the administrator as part of the installation process. A local user may be able to leverage this flaw to gain administrative access to the affected application and potentially other resources.
SolutionChange the application's administrator password and remove the installation log as described in the vendor advisory referenced above.