EMC NetWorker Module for MEDITECH 3.0 Build 87 - 90 Local Information Disclosure
Low Nessus Plugin ID 78823
SynopsisThe remote Windows host has an application installed that is affected by a local information disclosure vulnerability.
DescriptionThe version of EMC NetWorker (formerly Legato NetWorker) Module for MEDITECH (NMMEDI) installed on the remote host is 3.0 build 87 - 90.
It is, therefore, affected by a local information disclosure vulnerability due to RecoverPoint and Plink commands storing plaintext RecoverPoint Appliance login credentials in NMMEDI log files.
SolutionUpgrade to EMC NetWorker Module for MEDITECH 3.0 build 92 / 8.2 build 479 or later.