CVE-2015-6846 Information

Description

EMC SourceOne Email Supervisor before 7.2 uses hardcoded encryption keys which makes it easier for attackers to obtain access by examining how a program’s code conducts cryptographic operations.

Reference

http://packetstormsecurity.com/files/133922/EMC-SourceOne-Email-Supervisor-XSS-Session-Hijacking.html http://seclists.org/bugtraq/2015/Oct/58 http://www.securitytracker.com/id/1033787