CVE-2013-6806 Information

Description

OpenText Exceed OnDemand (EoD) 8 allows man-in-the-middle attackers to disable bidirectional authentication and obtain sensitive information via a crafted string in a response which triggers a downgrade to simple authentication that sends credentials in plaintext.

Reference

https://github.com/koto/exceed-mitm