|
|
|
|
| |
A security vulnerability in CenetraOne could allow users with access to the log files that are not protected by security settings by default, nor encrypted in any serious form (the password is encoded in Base64).
This allows local users to gain enough information about the accessing user to successfully impersonate him. |
| |
Credit:
The information has been provided by zedfly.
|
| |
Centra is a Web-based product designed to facilitate e-learning and collaboration. By default, when the application is launched, several log files are created within one of the application's sub-directories. These log files are not protected and contain sensitive information about the user, his/her machine and the connected network; including the proxy server name, port, exception list and a base64 encoded username / password string. Base64 is not an encryption method and it is, therefore, trivial to decode the clear text username and password.
This information could easily be used to successfully launch an impersonation attack on related systems participating in the user's network by both internal and external users as Centra technical support frequently request that these files be e-mailed and external facing devices such as remote access devices and secure web sites typically use the same username / password combination.
|
|
|
|
|
|
|
|
|
|
