Test ID:	1.3.6.1.4.1.25623.1.0.103039
Category:	Web application abuses
Title:	Request Tracker Password Information Disclosure Vulnerability
Summary:	Request Tracker is prone to an information disclosure vulnerability; because it fails to securely store passwords.
Description:	Summary: Request Tracker is prone to an information disclosure vulnerability because it fails to securely store passwords. Vulnerability Impact: Successful attacks can allow a local attacker to gain access to the stored passwords. Affected Software/OS: Request Tracker 3.6.x and 3.8.x are affected. Other versions may also be vulnerable. Solution: Updates are available. Please see the references for details. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0009 43438 http://secunia.com/advisories/43438 45959 http://www.securityfocus.com/bid/45959 70661 http://osvdb.org/70661 ADV-2011-0190 http://www.vupen.com/english/advisories/2011/0190 ADV-2011-0475 http://www.vupen.com/english/advisories/2011/0475 ADV-2011-0576 http://www.vupen.com/english/advisories/2011/0576 DSA-2150 http://www.debian.org/security/2011/dsa-2150 FEDORA-2011-1677 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/054740.html [mina-dev] 20210225 [jira] [Created] (FTPSERVER-500) Security vulnerability in common/lib/log4j-1.2.17.jar https://lists.apache.org/thread.html/rf9fa47ab66495c78bb4120b0754dd9531ca2ff0430f6685ac9b07772%40%3Cdev.mina.apache.org%3E [rt-announce] 20110119 Security vulnerability in RT 3.0 and up http://lists.bestpractical.com/pipermail/rt-announce/2011-January/000185.html http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=610850 https://bugzilla.redhat.com/show_bug.cgi?id=672250
Copyright	Copyright (C) 2011 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.