CVE-2013-6246 Information

Description

The Dell Quest One Password Manager possibly 5.0 allows remote attackers to bypass CAPTCHA protections and obtain sensitive information (user’s full name) by sending a login request with a valid domain and username but without the CaptchaType UseCaptchaEveryTime and CaptchaResponse parameters.

Reference

http://packetstormsecurity.com/files/123703/quest-captcha.txt http://www.securityfocus.com/bid/63259