PT-1999-1547 · Ca · Arcserve Nt Agents

Published

1999-02-21

Updated

2021-04-07

CVE-1999-1049

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions ARCserve NT agents (affected versions not specified)

Description The issue concerns the use of weak encryption for passwords in ARCserve NT agents. Specifically, the agents utilize XOR encryption, which can be easily decrypted. This weakness allows remote attackers to intercept the authentication request sent to port 6050 and subsequently decrypt the password.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-1999-1049

Affected Products

Arcserve Nt Agents

PT-1999-1547 · Ca · Arcserve Nt Agents

CVE-1999-1049

Related Identifiers

Affected Products

References · 2