CVE-2011-2736

Currently unrated

Key Information:

Vendor: Rsa
Status: Envision
Vendor: CVE Published:; 25 August 2011

Summary

RSA enVision 4.x before 4 SP4 P3 places cleartext administrative credentials in Task Escalation e-mail messages, which allows remote attackers to obtain sensitive information by sniffing the network or leveraging access to a recipient mailbox.

References

http://www.securityfocus.com/archive/1/519395/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securityreason.com/securityalert/8350

third-party-advisoryx_refsource_SREASON

http://www.securitytracker.com/id?1025979

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Aug 25, 2011
Vulnerability Reserved
Jul 13, 2011