Login.aspx in the SmarterTools SmarterStats 6.0 web server generates a ctl00$MPH$txtPassword password form field without disabling the autocomplete feature, which makes it easier for remote attackers to bypass authentication by leveraging an unattended workstation.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2011-05-20T22:00:00
Updated: 2017-08-28T12:57:01
Reserved: 2011-05-20T00:00:00
Link: CVE-2011-2155
JSON object: View
NVD Information
Status : Modified
Published: 2011-05-20T22:55:05.783
Modified: 2017-08-29T01:29:18.753
Link: CVE-2011-2155
JSON object: View
Redhat Information
No data.
CWE