CVE-2013-6806

Currently unrated

Key Information:

Vendor: Opentext
Status: Exceed Ondemand
Vendor: CVE Published:; 19 May 2014

Summary

OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in plaintext.

References

https://github.com/koto/exceed-mitm

x_refsource_MISC

Timeline

Vulnerability published
May 19, 2014
Vulnerability Reserved
Nov 17, 2013