authenticate_ad_setup_finished.cfm in MediaCAST 8 and earlier allows remote attackers to discover usernames and cleartext passwords by reading the error messages returned for requests that use the UserID parameter.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2011-05-10T19:00:00
Updated: 2017-08-16T14:57:01
Reserved: 2010-01-06T00:00:00
Link: CVE-2010-0216
JSON object: View
NVD Information
Status : Modified
Published: 2011-05-10T19:55:01.920
Modified: 2017-08-17T01:31:55.867
Link: CVE-2010-0216
JSON object: View
Redhat Information
No data.
CWE