3 matches found
CVE-2012-2964
The BreakingPoint Storm appliance before 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote attackers to obtain sensitive information by sniffing the network for XML documents...
CVE-2012-2964
The BreakingPoint Storm appliance before 3.0 requires cleartext credentials for establishing a session from a GUI administrative client, which allows remote attackers to obtain sensitive information by sniffing the network for XML documents...
CVE-2012-2963
The CVE-2012-2963 issue affects BreakingPoint Storm CTM before 3.0 where the embedded web server’s gwt/BugReport script does not enforce authorization, allowing an unauthenticated remote attacker to download a .tgz containing sensitive configuration data. The vulnerability is documented with an a...