CVE-2014-8868 Information

Description

EntryPass N5200 Active Network Control Panel does not properly restrict access which allows remote attackers to obtain the administrator username and password and possibly other sensitive information via a request to /4.

Reference

http://seclists.org/fulldisclosure/2014/Dec/2 http://www.securityfocus.com/archive/1/534128/100/0/threaded https://www.redteam-pentesting.de/advisories/rt-sa-2014-011