CVE-2005-4326 Information

Description

The web interface for American Power Conversion (APC) PowerChute Network Shutdown performs all communication in cleartext (base64-encoded) which allows remote attackers to sniff authentication credentials.

Reference

http://nam-en.apc.com/cgi-bin/nam_en.cfg/php/enduser/std_adp.php?p_faqid=7330 http://securitytracker.com/alerts/2005/Nov/1015250.html https://exchange.xforce.ibmcloud.com/vulnerabilities/23183