Vulnerabilities > Trustwave > Webdefend > Medium

DATE CVE VULNERABILITY TITLE RISK
2011-05-05 CVE-2011-1906 Credentials Management vulnerability in Trustwave Webdefend 2.0/3.0
Trustwave WebDefend Enterprise before 5.0 7.01.903-1.4 stores specific user-account credentials in a MySQL database, which makes it easier for remote attackers to read the event collection table via requests to the management port, a different vulnerability than CVE-2011-0756.
network
low complexity
trustwave CWE-255
5.0
2011-05-05 CVE-2011-0756 Credentials Management vulnerability in Trustwave Webdefend 2.0
The application server in Trustwave WebDefend Enterprise before 5.0 uses hardcoded console credentials, which makes it easier for remote attackers to read security-event data by using the remote console GUI to connect to the management port.
network
low complexity
trustwave CWE-255
5.0