EMC NetWorker 8.x < 18.104.22.168 Management Console Information Disclosure
Medium Nessus Plugin ID 70727
SynopsisThe remote Windows host has an application installed that is affected by an information disclosure vulnerability.
DescriptionThe version of EMC NetWorker is 8.x earlier than 22.214.171.124. As such, it is potentially affected by an information disclosure vulnerability.
When the NetWorker Management Console is configured to use Active Directory/LDAP for authentication, an authenticated user may be able to see the AD/LDAP administrator password transmitted in cleartext.
SolutionUpgrade to EMC NetWorker 126.96.36.199 / 8.1 or later.