CVE-2011-4142

Published: Jan 19, 2012Modified: Apr 29, 2026

2.1

Vector

AV:L/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 3.9 / Impact: 2.9

Source: NVD

Description

The Web Search feature in EMC SourceOne Email Management 6.5 before 6.5.2.4033, 6.6 before 6.6.1.2194, and 6.7 before 6.7.2.2033 places cleartext credentials in log files, which allows local users to obtain sensitive information by reading these files.

Affected (7)

Products: Emc: Sourceone Email Management

Emc

1 product

Sourceone Email Management

Configuration A

7 vulnerable

Vulnerable Software	Affected Versions
Emc Sourceone Email Management	Up to 6.5.2.3668
Emc Sourceone Email Management	Up to 6.6.1.2108
Emc Sourceone Email Management	Up to 6.7.2.0017
Emc Sourceone Email Management	Version 6.5
Emc Sourceone Email Management	Version 6.6.0.1209
Emc Sourceone Email Management	Version 6.6
Emc Sourceone Email Management	Version 6.7

Related CWEs

CWE-255

References (2)

http://www.securityfocus.com/archive/1/521290

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/521290

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.