Facebook Google Plus Twitter LinkedIn YouTube RSS Menu Search Resource - BlogResource - WebinarResource - ReportResource - Eventicons_066 icons_067icons_068icons_069icons_070

Retrospect Backup Server < 7.6 Authentication Module Password Hash Disclosure (ESA-08-009)

Medium

Synopsis

The remote Windows host has an application that is affected by an information disclosure vulnerability.

Description

According to its version number, the Authentication Module in the Retrospect Backup Server installed on the remote host uses a weak hash algorithm to hash a user's password, which could allow a remote attacker to gain control of a client's machine.

Solution

Upgrade to version 7.6 or higher.