Broadcom: >> Arcserve Backup >> 6.5 Security Vulnerabilities
ARCserve NT agents use weak encryption (XOR) for passwords, which allows remote attackers to sniff the authentication request to port 6050 and decrypt the password.
CVSS Score
10.0
EPSS Score
0.005
Published
1999-02-21
The installation of 1ArcServe Backup and Inoculan AV client modules for Exchange create a log file, exchverify.log, which contains usernames and passwords in plaintext.
CVSS Score
4.6
EPSS Score
0.008
Published
1998-11-12