CVE-2011-3685

Name of the Vulnerable Software and Affected Versions Tembria Server Monitor versions prior to 6.0.5 Build 2252

Description The issue allows local users to obtain sensitive information by leveraging read access to certain files. This is due to the use of a substitution cipher to encrypt application credentials. The files in question include authentication.dat and XML files in the Exports directory.

Recommendations For versions prior to 6.0.5 Build 2252, update to version 6.0.5 Build 2252 or later to resolve the issue. As a temporary workaround, consider restricting read access to authentication.dat and XML files in the Exports directory to minimize the risk of exploitation.