CVE-2006-1829

Name of the Vulnerable Software and Affected Versions EAServer versions 5.2 through 5.3

Description The issue allows remote authenticated users to obtain password credentials of arbitrary users via unspecified vectors involving connection caches, open password prompts, and stored custom connection profiles.

Recommendations For EAServer versions 5.2 through 5.3, consider restricting access to the EAServer Manager to minimize the risk of exploitation. As a temporary workaround, limit the use of custom connection profiles and ensure that password prompts are properly secured. At the moment, there is no information about a newer version that contains a fix for this vulnerability.