{"type": "packetstorm", "published": "1999-08-17T00:00:00", "reporter": "Packet Storm", "hashmap": [{"key": "bulletinFamily", "hash": "708697c63f7eb369319c6523380bdf7a"}, {"key": "cvelist", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cvss", "hash": "d4be9c4fc84262b4f39f89565918568f"}, {"key": "description", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "href", "hash": "7a1c486c2f0b287aa29a49015471f347"}, {"key": "modified", "hash": "9c9724194c79e3f95cb8597d199abea6"}, {"key": "objectVersion", "hash": "56765472680401499c79732468ba4340"}, {"key": "published", "hash": "9c9724194c79e3f95cb8597d199abea6"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "7e63640ffbb0546f3e2929f550c8818d"}, {"key": "sourceData", "hash": "a439e34d71875b122af372412796b5c8"}, {"key": "sourceHref", "hash": "e8c11ac810c801165fa805efee6ee169"}, {"key": "title", "hash": "13b71707c7a554e1b3ebc911688c9ae2"}, {"key": "type", "hash": "6466ca3735f647eeaed965d9e71bd35d"}], "bulletinFamily": "exploit", "cvss": {"vector": "NONE", "score": 0.0}, "sourceData": "`Date: Fri, 5 Mar 1999 12:19:59 -0800 \nFrom: JEK <jkolde@EARTHLINK.NET> \nTo: NTBUGTRAQ@LISTSERV.NTBUGTRAQ.COM \nSubject: Cheyenne InocuLAN for Exchange plain text password still there \n \n \nThis dates back to Ron Watkins' post on 12/16/98 regarding the plain text \naccount name/password left in the exchverify.log file by the installation of \nCheyenne's Anti-Virus Agent for Exchange. \n \nQuote from Ron: \n\"I was called on Monday by Brian Linton at Computer Associates. He says \nthat the plaintext admin password was put into c:\\exchverify.log by earlier \nversions of the Arcserve Exchange client, but that build 57 (the most recent \nversion) puts only the length there. It does not erase that file as new \ninstalls are done, but rather appends, which is why some folks still had \nthat plaintext password even after installing the most recent build.\" \n \nI am currently testing AV Agent for Exchange and installed what I was told \nwas the most recent version (build 64) on a clean NT 4.0/SP4/Exchange 5.5 \nserver running InocuLAN for NT 4.0 (build 375). This was a fresh build and \n*not* upgraded from earlier versions of any software. The exchverify.log \nfile is still there and still contains the account name and password in \nclear text - NOT merely the length as stated above. \n \nJEK, MCSE \n`\n", "viewCount": 0, "history": [], "lastseen": "2016-11-03T10:29:40", "objectVersion": "1.2", "href": "https://packetstormsecurity.com/files/12102/cheyenne.InocuLAN.passwd.txt.html", "sourceHref": "https://packetstormsecurity.com/files/download/12102/cheyenne.InocuLAN.passwd.txt", "title": "cheyenne.InocuLAN.passwd.txt", "enchantments": {"score": {"value": -0.3, "vector": "NONE", "modified": "2016-11-03T10:29:40", "rev": 2}, "dependencies": {"references": [], "modified": "2016-11-03T10:29:40", "rev": 2}, "vulnersScore": -0.3}, "references": [], "id": "PACKETSTORM:12102", "hash": "0bc940e2c7e92b0dcc059b4fa10aaf6e0051a076b2870d272adf267ee43e2e9c", "edition": 1, "cvelist": [], "modified": "1999-08-17T00:00:00", "description": ""}

{}