McAfee Email and Web Security (EWS) 5.x before 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not properly encrypt system-backup data, which makes it easier for remote authenticated users to obtain sensitive information by reading a backup file, as demonstrated by obtaining password hashes.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2012-08-22T10:00:00
Updated: 2012-10-30T09:00:00
Reserved: 2012-08-22T00:00:00
Link: CVE-2012-4584
JSON object: View
NVD Information
Status : Modified
Published: 2012-08-22T10:42:04.867
Modified: 2012-10-30T04:07:53.127
Link: CVE-2012-4584
JSON object: View
Redhat Information
No data.
CWE