CVE-2013-6806

2014-05-19T10:55:09
ID CVE-2013-6806
Type cve
Reporter NVD
Modified 2014-05-19T15:15:05

Description

OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response, which triggers a downgrade to simple authentication that sends credentials in plaintext.