Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Sambar Cleartext Password Remote Disclosure

Low

Synopsis

The remote Sambar server does not run on top of SSL, therefore passwords are transmitted in cleartext over HTTP.

Description

The remote Sambar server does not run on top of SSL, therefore passwords are transmitted in cleartext over HTTP. An attacker who can sniff network traffic may use this flaw to gain access on the web interface of this host.

Solution

No solution is known at this time.