|
Family: Windows --> Category: infos
Adobe Contribute Publishing Server Administrator Password Disclosure Vulnerability Scan
Vulnerability Scan Summary Checks for administrator password in Adobe Contribute Publishing Server installation log
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote Windows host contains an application that is affected by an
information disclosure vulnerability.
Description :
Adobe Contribute Publishing Server, a web publishing management
application, is installed on the remote Windows host.
The version of Contribute Publishing Server on the remote host logged
a copy of the password specified for the administrator as part of the
installation process. A local user may be able to leverage this flaw
to gain administrative access to the affected application and
potentially other resources.
See also :
http://www.adobe.com/support/security/bulletins/apsb06-15.html
Solution :
Change the application's administrator password and remove the
installation log as described in the vendor advisory referenced above.
Threat Level:
Low / CVSS Base Score : 1.6
(AV:L/AC:L/Au:NR/C:P/I:N/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|