PT-1998-1186 · Hummingbird · Hummingbird Exceed

Published

1998-12-03

Updated

2017-12-19

CVE-1999-1280

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Hummingbird Exceed version 6.0.1.0

Description The issue involves the inclusion of a development and testing DLL in Hummingbird Exceed, which logs user names and passwords in cleartext in the test.log file.

Recommendations For version 6.0.1.0, remove the development and testing DLL to prevent cleartext logging of user credentials.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1280

Affected Products

Hummingbird Exceed

PT-1998-1186 · Hummingbird · Hummingbird Exceed

CVE-1999-1280

Related Identifiers

Affected Products

References · 3