CVE-2001-1464 Information

Description

Crystal Reports when displaying data for a password protected database using HTML pages embeds the username and password in cleartext in the HTML page and the URL which allows remote attackers to obtain passwords.

Reference

http://www.kb.cert.org/vuls/id/403307 https://exchange.xforce.ibmcloud.com/vulnerabilities/7928