CVE-2011-2223 Information

Description

The Mobility Pack before 1.2 in Novell Data Synchronizer 1.x through 1.1.2 build 428 sends the Admin LDAP password in cleartext which allows remote attackers to obtain sensitive information by sniffing the network.

Reference

http://secunia.com/advisories/45527 http://www.novell.com/support/viewContent.do?externalId=7009055 http://www.securityfocus.com/bid/49069