CVE-2008-0174

Published: Jan 29, 2008

Modified: Aug 7, 2024

PUBLISHED

Description

GE Fanuc Proficy Real-Time Information Portal 2.6 and earlier uses HTTP Basic Authentication, which transmits usernames and passwords in base64-encoded cleartext and allows remote attackers to steal the passwords and gain privileges.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

20080129 Re: C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Authentication Vulnerability

mailing-list

x_refsource_BUGTRAQ

VU#180876

third-party-advisory

x_refsource_CERT-VN

3590

third-party-advisory

x_refsource_SREASON

1019273

vdb-entry

x_refsource_SECTRACK

http://support.gefanuc.com/support/index?page=kbchannel&id=KB12459

x_refsource_CONFIRM

20080125 C4 Security Advisory - GE Fanuc Proficy Information Portal 2.6 Authentication Vulnerability

mailing-list

x_refsource_BUGTRAQ

30754

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2008-0174

Description

Affected Products

References