CVE-1999-1322

Name of the Vulnerable Software and Affected Versions 1ArcServe Backup (affected versions not specified) Inoculan AV client (affected versions not specified)

Description The installation of certain modules creates a log file, exchverify.log, which stores usernames and passwords in plaintext.

Recommendations For 1ArcServe Backup, consider restricting access to the exchverify.log file until a fix is available. For Inoculan AV client, avoid using the affected module for Exchange until the issue is resolved. As a temporary workaround, consider disabling the logging feature that creates the exchverify.log file to prevent plaintext storage of sensitive information.