Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The remote administration client for RhinoSoft Serv-U 3.0 sends the user password in plaintext even when S/KEY One-Time Password (OTP) authentication is enabled, which allows remote attackers to sniff passwords.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
SolarWinds Serv-U File Server 加密问题漏洞
Vulnerability Description
SolarWinds Serv-U File Server是美国SolarWinds公司的一款文件传输服务器。 SolarWinds Serv-U File Server 3.0.0.16版本和3.0.0.17版本中的远程管理客户端存在加密问题漏洞,该漏洞源于即使S/KEY One-Time Password (OTP) 认证被启用时,远程管理客户端仍以明文的形式发送用户密码。远程攻击者可利用该漏洞嗅探密码。
CVSS Information
N/A
Vulnerability Type
N/A