CVE-2011-1509

Currently unrated 🤨

Key Information

Vendor: Manageengine
Status: Servicedesk Plus
Vendor: CVE Published:; 20 September 2011

Summary

The encryptPassword function in Login.js in ManageEngine ServiceDesk Plus (SDP) 8012 and earlier uses a Caesar cipher for encryption of passwords in cookies, which makes it easier for remote attackers to obtain sensitive information by sniffing the network.

Timeline

Vulnerability published.
Sep 20, 2011
Vulnerability Reserved.
Mar 23, 2011

Collectors

NVD DatabaseMitre Database